[kernel-sec-discuss] r1998 - active
Dann Frazier
dannf at alioth.debian.org
Mon Oct 25 03:20:33 UTC 2010
Author: dannf
Date: 2010-10-25 03:20:31 +0000 (Mon, 25 Oct 2010)
New Revision: 1998
Modified:
active/CVE-2010-2942
active/CVE-2010-3477
Log:
stable tree status
Modified: active/CVE-2010-2942
===================================================================
--- active/CVE-2010-2942 2010-10-25 02:18:41 UTC (rev 1997)
+++ active/CVE-2010-2942 2010-10-25 03:20:31 UTC (rev 1998)
@@ -1,4 +1,4 @@
-Candidate: needed
+Candidate: CVE-2010-2942
Description:
32-bits of kernel memory are leaked to user land via tc dump
References:
@@ -8,7 +8,7 @@
Notes:
Bugs:
upstream: released (2.6.36-rc3) [1c40be1]
-2.6.32-upstream-stable:
+2.6.32-upstream-stable: needed "dannf submitted to stable@ on 2010.10.24"
linux-2.6: released (2.6.32-25) [bugfix/all/act_nat-use-stack-variable.patch, bugfix/all/net-sched-fix-some-memory-leaks.patch]
2.6.26-lenny-security: released (2.6.26-25) [bugfix/all/net-sched-fix-some-kernel-memory-leaks.patch]
2.6.32-squeeze-security: released (2.6.32-25) [bugfix/all/act_nat-use-stack-variable.patch, bugfix/all/net-sched-fix-some-memory-leaks.patch]
Modified: active/CVE-2010-3477
===================================================================
--- active/CVE-2010-3477 2010-10-25 02:18:41 UTC (rev 1997)
+++ active/CVE-2010-3477 2010-10-25 03:20:31 UTC (rev 1998)
@@ -1,4 +1,4 @@
-Candidate: cve-2010-3477
+Candidate: CVE-2010-3477
Description: net/sched infoleak
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3477
@@ -6,7 +6,7 @@
addresses incomplete fix for cve-2010-2942
Bugs:
upstream: released (2.6.36-rc4) [0f04cfd0]
-2.6.32-upstream-stable: needed
+2.6.32-upstream-stable: needed "dannf submitted to stable@ on 2010.10.24"
linux-2.6: released (2.6.32-25) [bugfix/all/net-sched-fix-kernel-leak-in-act_police.patch]
2.6.26-lenny-security: pending (2.6.26-25lenny2) [bugfix/all/net-sched-fix-kernel-leak-in-act_police.patch]
2.6.32-squeeze-security: released (2.6.32-25) [bugfix/all/net-sched-fix-kernel-leak-in-act_police.patch]
More information about the kernel-sec-discuss
mailing list