[kernel-sec-discuss] r1965 - active

Michael Gilbert gilbert-guest at alioth.debian.org
Fri Sep 17 01:14:41 UTC 2010 

Author: gilbert-guest
Date: 2010-09-17 01:14:34 +0000 (Fri, 17 Sep 2010)
New Revision: 1965

Added:
   active/CVE-2010-3084
   active/CVE-2010-3295
   active/CVE-2010-3296
   active/CVE-2010-3297
   active/CVE-2010-3298
Log:
new issues

Added: active/CVE-2010-3084
===================================================================
--- active/CVE-2010-3084	                        (rev 0)
+++ active/CVE-2010-3084	2010-09-17 01:14:34 UTC (rev 1965)
@@ -0,0 +1,11 @@
+Candidate: cve-2010-3084
+Description: niu buffer overflow for ETHTOOL_GRXCLSRLALL
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=632069
+Notes:
+Bugs:
+upstream: pending [ee9c5cfa]
+2.6.32-upstream-stable:
+linux-2.6:
+2.6.26-lenny-security:
+2.6.32-squeeze-security:

Added: active/CVE-2010-3295
===================================================================
--- active/CVE-2010-3295	                        (rev 0)
+++ active/CVE-2010-3295	2010-09-17 01:14:34 UTC (rev 1965)
@@ -0,0 +1,12 @@
+Candidate: CVE-2010-3295
+Description: drivers/net/tulip/de4x5.c: reading uninitialized stack memory
+References:
+ https://bugzilla.redhat.com/633158
+Notes:
+ supposedly not an issue: http://www.openwall.com/lists/oss-security/2010/09/15/2
+Bugs:
+upstream:
+2.6.32-upstream-stable:
+linux-2.6:
+2.6.26-lenny-security:
+2.6.32-squeeze-security:

Added: active/CVE-2010-3296
===================================================================
--- active/CVE-2010-3296	                        (rev 0)
+++ active/CVE-2010-3296	2010-09-17 01:14:34 UTC (rev 1965)
@@ -0,0 +1,11 @@
+Candidate: cve-2010-3296
+Description: drivers/net/cxgb3/cxgb3_main.c reading uninitialized stack memory
+References:
+ https://bugzilla.redhat.com/633149
+Notes:
+Bugs:
+upstream:
+2.6.32-upstream-stable:
+linux-2.6:
+2.6.26-lenny-security:
+2.6.32-squeeze-security:

Added: active/CVE-2010-3297
===================================================================
--- active/CVE-2010-3297	                        (rev 0)
+++ active/CVE-2010-3297	2010-09-17 01:14:34 UTC (rev 1965)
@@ -0,0 +1,11 @@
+Candidate: cve-2010-3297
+Description: drivers/net/eql.c: reading uninitialized stack memory
+References:
+ https://bugzilla.redhat.com/633145
+Notes:
+Bugs:
+upstream:
+2.6.32-upstream-stable:
+linux-2.6:
+2.6.26-lenny-security:
+2.6.32-squeeze-security:

Added: active/CVE-2010-3298
===================================================================
--- active/CVE-2010-3298	                        (rev 0)
+++ active/CVE-2010-3298	2010-09-17 01:14:34 UTC (rev 1965)
@@ -0,0 +1,11 @@
+Candidate: cve-2010-3298
+Description: drivers/net/usb/hso.c: reading uninitialized memory
+References:
+ https://bugzilla.redhat.com/633140
+Notes:
+Bugs:
+upstream:
+2.6.32-upstream-stable:
+linux-2.6:
+2.6.26-lenny-security:
+2.6.32-squeeze-security:

More information about the kernel-sec-discuss mailing list