[kernel-sec-discuss] r1866 - active retired

Moritz Muehlenhoff jmm at alioth.debian.org
Thu Jul 1 06:59:57 UTC 2010 

Author: jmm
Date: 2010-07-01 06:59:51 +0000 (Thu, 01 Jul 2010)
New Revision: 1866

Added:
   active/CVE-2010-2478
   retired/CVE-2010-2243
Removed:
   active/CVE-2010-2243
   active/CVE-2010-ethtool-buffer-overflow
Log:
retire one issue
CVE ID assigned for ethtool issue


Deleted: active/CVE-2010-2243
===================================================================
--- active/CVE-2010-2243	2010-07-01 04:14:59 UTC (rev 1865)
+++ active/CVE-2010-2243	2010-07-01 06:59:51 UTC (rev 1866)
@@ -1,12 +0,0 @@
-Candidate: CVE-2010-2243
-Description:
- timekeeping oops
-References:
- http://www.openwall.com/lists/oss-security/2010/06/23/1
-Notes:
-Bugs:
-upstream: released (2.6.34) [ad6759fb]
-2.6.32-upstream-stable: released (2.6.32.11) [74b17607]
-linux-2.6: released (2.6.32-11) [bugfix/all/stable/2.6.32.11.patch]
-2.6.26-lenny-security: N/A "probably not an issue because this was before the referenced clocksource revamp; definitely not an issue because we use CONFIG_GENERIC_TIME=y"
-2.6.32-squeeze-security: released (2.6.32-11) [bugfix/all/stable/2.6.32.11.patch]

Copied: active/CVE-2010-2478 (from rev 1865, active/CVE-2010-ethtool-buffer-overflow)
===================================================================
--- active/CVE-2010-2478	                        (rev 0)
+++ active/CVE-2010-2478	2010-07-01 06:59:51 UTC (rev 1866)
@@ -0,0 +1,12 @@
+Candidate: needed?
+Description:
+ buffer overflow in ethtool
+References:
+ http://openwall.com/lists/oss-security/2010/06/29/1
+Notes:
+Bugs:
+upstream: needed
+2.6.32-upstream-stable: needed
+linux-2.6: needed
+2.6.26-lenny-security: N/A "vulnerability introduced in 2.6.27 commit 0853ad66"
+2.6.32-squeeze-security: needed


Property changes on: active/CVE-2010-2478
___________________________________________________________________
Added: svn:mergeinfo
   + 

Deleted: active/CVE-2010-ethtool-buffer-overflow
===================================================================
--- active/CVE-2010-ethtool-buffer-overflow	2010-07-01 04:14:59 UTC (rev 1865)
+++ active/CVE-2010-ethtool-buffer-overflow	2010-07-01 06:59:51 UTC (rev 1866)
@@ -1,12 +0,0 @@
-Candidate: needed?
-Description:
- buffer overflow in ethtool
-References:
- http://openwall.com/lists/oss-security/2010/06/29/1
-Notes:
-Bugs:
-upstream: needed
-2.6.32-upstream-stable: needed
-linux-2.6: needed
-2.6.26-lenny-security: N/A "vulnerability introduced in 2.6.27 commit 0853ad66"
-2.6.32-squeeze-security: needed

Copied: retired/CVE-2010-2243 (from rev 1864, active/CVE-2010-2243)
===================================================================
--- retired/CVE-2010-2243	                        (rev 0)
+++ retired/CVE-2010-2243	2010-07-01 06:59:51 UTC (rev 1866)
@@ -0,0 +1,12 @@
+Candidate: CVE-2010-2243
+Description:
+ timekeeping oops
+References:
+ http://www.openwall.com/lists/oss-security/2010/06/23/1
+Notes:
+Bugs:
+upstream: released (2.6.34) [ad6759fb]
+2.6.32-upstream-stable: released (2.6.32.11) [74b17607]
+linux-2.6: released (2.6.32-11) [bugfix/all/stable/2.6.32.11.patch]
+2.6.26-lenny-security: N/A "probably not an issue because this was before the referenced clocksource revamp; definitely not an issue because we use CONFIG_GENERIC_TIME=y"
+2.6.32-squeeze-security: released (2.6.32-11) [bugfix/all/stable/2.6.32.11.patch]


Property changes on: retired/CVE-2010-2243
___________________________________________________________________
Added: svn:mergeinfo
   +

More information about the kernel-sec-discuss mailing list