[kernel-sec-discuss] r1951 - active

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Sep 6 14:16:08 UTC 2010


Author: jmm
Date: 2010-09-06 14:16:02 +0000 (Mon, 06 Sep 2010)
New Revision: 1951

Modified:
   active/CVE-2010-0435
Log:
update


Modified: active/CVE-2010-0435
===================================================================
--- active/CVE-2010-0435	2010-09-06 14:13:05 UTC (rev 1950)
+++ active/CVE-2010-0435	2010-09-06 14:16:02 UTC (rev 1951)
@@ -4,8 +4,9 @@
 References:
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0435
 Notes:
- i couldn't find enough info to determine whether the kernel kvm code is affected or not.
- there isn't much useful in the redhat bug report.
+ jmm> RHEL patch commited as patches/CVE-2010-0435-kvm-kernel-fix-null-pointer-dereference.patch
+ jmm> The kernel.org version is quite different, though. Maybe it's only exploitable in 
+ jmm> combination with the plethora of KVM patches added by Red Hat?
 Bugs:
 upstream:
 2.6.32-upstream-stable:




More information about the kernel-sec-discuss mailing list