[kernel-sec-discuss] r2027 - active

Mon Nov 15 20:32:02 UTC 2010

Author: dannf
Date: 2010-11-15 20:32:02 +0000 (Mon, 15 Nov 2010)
New Revision: 2027

Modified:
   active/CVE-2010-4076
   active/CVE-2010-4077
   active/CVE-2010-4078
   active/CVE-2010-4079
Log:
status updates

Modified: active/CVE-2010-4076
===================================================================

--- active/CVE-2010-4076	2010-11-15 20:31:52 UTC (rev 2026)
+++ active/CVE-2010-4076	2010-11-15 20:32:02 UTC (rev 2027)
@@ -6,5 +6,5 @@
 upstream: needed 
 2.6.32-upstream-stable: needed
 linux-2.6: needed
-2.6.26-lenny-security: needed
+2.6.26-lenny-security: needed "no upstream fix as of 2010.11.10"
 2.6.32-squeeze-security: needed

Modified: active/CVE-2010-4077
===================================================================
--- active/CVE-2010-4077	2010-11-15 20:31:52 UTC (rev 2026)
+++ active/CVE-2010-4077	2010-11-15 20:32:02 UTC (rev 2027)
@@ -6,5 +6,5 @@
 upstream: needed 
 2.6.32-upstream-stable: needed
 linux-2.6: needed
-2.6.26-lenny-security: needed
+2.6.26-lenny-security: needed "no upstream fix as of 2010.11.10"
 2.6.32-squeeze-security: needed

Modified: active/CVE-2010-4078
===================================================================
--- active/CVE-2010-4078	2010-11-15 20:31:52 UTC (rev 2026)
+++ active/CVE-2010-4078	2010-11-15 20:32:02 UTC (rev 2027)
@@ -1,10 +1,10 @@
 Candidate: CVE-2010-4078
 Description: FBIOGET_VBLANK leak
 References:
-Notes: fd02db9de73faebc51240619c7c7f99bee9f65c7
+Notes:
 Bugs:
-upstream: released (2.6.36)
+upstream: released (2.6.36) [fd02db9de73faebc51240619c7c7f99bee9f65c7]
 2.6.32-upstream-stable: released (2.6.32.23)
 linux-2.6: released (2.6.32-24)
-2.6.26-lenny-security: needed
+2.6.26-lenny-security: pending (2.6.26-25lenny2) [bugfix/all/video-sis-prevent-reading-uninitialized-stack-memory.patch]
 2.6.32-squeeze-security: released (2.6.32-24)

Modified: active/CVE-2010-4079
===================================================================
--- active/CVE-2010-4079	2010-11-15 20:31:52 UTC (rev 2026)
+++ active/CVE-2010-4079	2010-11-15 20:32:02 UTC (rev 2027)
@@ -1,10 +1,10 @@
 Candidate: CVE-2010-4079
 Description: ivtvfb stack disclosure
 References:
-Notes: 405707985594169cfd0b1d97d29fcb4b4c6f2ac9
+Notes:
 Bugs:
-upstream: released (2.6.36)
+upstream: released (2.6.36) [405707985594169cfd0b1d97d29fcb4b4c6f2ac9]
 2.6.32-upstream-stable: needed
 linux-2.6: needed
-2.6.26-lenny-security: needed
+2.6.26-lenny-security: pending (2.6.26-25lenny2) [bugfix/all/ivtvfb-prevent-reading-uninitialized-stack-memory.patch]
 2.6.32-squeeze-security: needed


