[kernel-sec-discuss] r2252 - active

Moritz Muehlenhoff jmm at alioth.debian.org
Wed Apr 13 15:05:19 UTC 2011


Author: jmm
Date: 2011-04-13 15:05:16 +0000 (Wed, 13 Apr 2011)
New Revision: 2252

Added:
   active/CVE-2011-1160
Modified:
   active/CVE-2011-1476
   active/CVE-2011-1477
Log:
new info leak


Added: active/CVE-2011-1160
===================================================================
--- active/CVE-2011-1160	                        (rev 0)
+++ active/CVE-2011-1160	2011-04-13 15:05:16 UTC (rev 2252)
@@ -0,0 +1,11 @@
+Candidate: CVE-2011-1160
+Description: char/tpm: Fix uninitialized usage of data buffer
+References:
+ http://tpmdd.git.sourceforge.net/git/gitweb.cgi?p=tpmdd/tpmdd;a=commitdiff;h=459e0537ebb7b786cd29a26f4e41c721632cd840
+Notes:
+Bugs:
+upstream:
+2.6.32-upstream-stable: needed
+linux-2.6: 
+2.6.26-lenny-security: needed
+2.6.32-squeeze-security: needed

Modified: active/CVE-2011-1476
===================================================================
--- active/CVE-2011-1476	2011-04-05 16:20:51 UTC (rev 2251)
+++ active/CVE-2011-1476	2011-04-13 15:05:16 UTC (rev 2252)
@@ -3,7 +3,7 @@
 References:
  http://marc.info/?l=linux-kernel&m=130089204124354&w=2
 Notes:
- jmm> OSS disabled in sid
+ jmm> OSS disabled since Squeeze
 Bugs:
 upstream: needed
 2.6.32-upstream-stable: needed

Modified: active/CVE-2011-1477
===================================================================
--- active/CVE-2011-1477	2011-04-05 16:20:51 UTC (rev 2251)
+++ active/CVE-2011-1477	2011-04-13 15:05:16 UTC (rev 2252)
@@ -3,7 +3,7 @@
 References:
  http://marc.info/?l=linux-kernel&m=130089499728386&w=2
 Notes:
- jmm> OSS disabled in sid
+ jmm> OSS disabled since Squeeze
 Bugs:
 upstream: needed
 2.6.32-upstream-stable: needed




More information about the kernel-sec-discuss mailing list