[kernel-sec-discuss] r2256 - active

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Apr 18 11:43:35 UTC 2011 

Author: jmm
Date: 2011-04-18 11:43:31 +0000 (Mon, 18 Apr 2011)
New Revision: 2256

Modified:
   active/CVE-2010-3865
   active/CVE-2010-3875
   active/CVE-2010-3876
   active/CVE-2010-3877
   active/CVE-2010-3880
   active/CVE-2010-4243
   active/CVE-2010-4342
   active/CVE-2010-4529
   active/CVE-2010-4565
   active/CVE-2011-0711
   active/CVE-2011-1078
   active/CVE-2011-1079
   active/CVE-2011-1080
   active/CVE-2011-1170
   active/CVE-2011-1171
   active/CVE-2011-1172
   active/CVE-2011-1173
Log:
2.6.32.37 released


Modified: active/CVE-2010-3865
===================================================================
--- active/CVE-2010-3865	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2010-3865	2011-04-18 11:43:31 UTC (rev 2256)
@@ -11,7 +11,7 @@
  bwh> Auto-loading will be disabled in 2.6.32-28.
 Bugs:
 upstream: released (2.6.37-rc1) [1b1f693d7ad6d193862dcb1118540a030c5e761f]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: 
 linux-2.6: released (2.6.37-1)
 2.6.26-lenny-security: N/A (Vulnerable code not present)
 2.6.32-squeeze-security: released (2.6.32-31)

Modified: active/CVE-2010-3875
===================================================================
--- active/CVE-2010-3875	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2010-3875	2011-04-18 11:43:31 UTC (rev 2256)
@@ -5,7 +5,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.37-rc2) [fe10ae5]
-2.6.32-upstream-stable:  pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: released (2.6.32-30) [bugfix/all/CVE-2010-3875.patch]
 2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/net-ax25-fix-information-leak-to-userland.patch]
 2.6.32-squeeze-security: released (2.6.32-30) [bugfix/all/CVE-2010-3875.patch]

Modified: active/CVE-2010-3876
===================================================================
--- active/CVE-2010-3876	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2010-3876	2011-04-18 11:43:31 UTC (rev 2256)
@@ -5,7 +5,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.37-rc2) [6728664]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: released (2.6.32-30) [bugfix/all/CVE-2010-3876.patch]
 2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/net-packet-fix-information-leak-to-userland.patch]
 2.6.32-squeeze-security: released (2.6.32-30) [bugfix/all/CVE-2010-3876.patch]

Modified: active/CVE-2010-3877
===================================================================
--- active/CVE-2010-3877	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2010-3877	2011-04-18 11:43:31 UTC (rev 2256)
@@ -5,7 +5,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.37-rc2) [88f8a5e3e7defccd3925cabb1ee4d3994e5cdb52]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: released (2.6.32-30) [bugfix/all/CVE-2010-3877.patch]
 2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/net-tipc-fix-information-leak-to-userland.patch]
 2.6.32-squeeze-security: released (2.6.32-30) [bugfix/all/CVE-2010-3877.patch]

Modified: active/CVE-2010-3880
===================================================================
--- active/CVE-2010-3880	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2010-3880	2011-04-18 11:43:31 UTC (rev 2256)
@@ -5,7 +5,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.37-rc2) [22e76c8]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: released (2.6.32-30) [bugfix/all/CVE-2010-3880.patch]
 2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/inet_diag-make-sure-we-actually-run-the-same-bytecode-we-audited.patch]
 2.6.32-squeeze-security: released (2.6.32-30) [bugfix/all/CVE-2010-3880.patch]

Modified: active/CVE-2010-4243
===================================================================
--- active/CVE-2010-4243	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2010-4243	2011-04-18 11:43:31 UTC (rev 2256)
@@ -12,7 +12,7 @@
  > terminated by the OOM killer."
 Bugs:
 upstream: released (2.6.37-rc5) [3c77f84, 114279be2120a916e8a04feeb2ac976a10016f2f]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: released (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]
 2.6.26-lenny-security: released (2.6.26-26lenny2) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]
 2.6.32-squeeze-security: released (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]

Modified: active/CVE-2010-4342
===================================================================
--- active/CVE-2010-4342	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2010-4342	2011-04-18 11:43:31 UTC (rev 2256)
@@ -6,7 +6,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.37) [4e085e76cbe558b79b54cbab772f61185879bc64]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: released (2.6.32-30) [bugfix/all/CVE-2010-4342.patch]
 2.6.26-lenny-security: released (2.6.26-26lenny2) [bugfix/all/econet-fix-crash-in-aun_incoming.patch]
 2.6.32-squeeze-security: released (2.6.32-30) [bugfix/all/CVE-2010-4342.patch]

Modified: active/CVE-2010-4529
===================================================================
--- active/CVE-2010-4529	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2010-4529	2011-04-18 11:43:31 UTC (rev 2256)
@@ -5,7 +5,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.37) [fdac1e0697356ac212259f2147aa60c72e334861]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: released (2.6.32-30) [bugfix/all/irda-prevent-integer-underflow-in-IRLMP_ENUMDEVICES.patch]
 2.6.26-lenny-security: released (2.6.26-26lenny2) [bugfix/all/irda-prevent-integer-underflow-in-IRLMP_ENUMDEVICES.patch]
 2.6.32-squeeze-security: released (2.6.32-30) [bugfix/all/irda-prevent-integer-underflow-in-IRLMP_ENUMDEVICES.patch]

Modified: active/CVE-2010-4565
===================================================================
--- active/CVE-2010-4565	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2010-4565	2011-04-18 11:43:31 UTC (rev 2256)
@@ -4,7 +4,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.37) [9f260e0efa4766e56d0ac14f1aeea6ee5eb8fe83]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: released (2.6.37-1)
 2.6.26-lenny-security: released (2.6.26-26lenny2) [bugfix/all/can-use-inode-instead-of-kernel-address-for-proc-file.patch]
-2.6.32-squeeze-security: pending (2.6.32-31) [bugfix/all/can-use-inode-instead-of-kernel-address-for-proc-file.patch]
+2.6.32-squeeze-security: released (2.6.32-31) [bugfix/all/can-use-inode-instead-of-kernel-address-for-proc-file.patch]

Modified: active/CVE-2011-0711
===================================================================
--- active/CVE-2011-0711	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2011-0711	2011-04-18 11:43:31 UTC (rev 2256)
@@ -5,7 +5,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.38-rc7) [c4d0c3b097f7584772316ee4d64a09fe0e4ddfca]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: released (2.6.38-1)
 2.6.26-lenny-security: pending (2.6.26-26lenny3) [bugfix/all/xfs-prevent-leaking-uninitialized-stack-memory-in-FSGEOMETRY_V1.patch, bugfix/all/xfs-zero-proper-structure-size-for-geometry-calls.patch]
 2.6.32-squeeze-security: released (2.6.32-33) [bugfix/all/xfs-prevent-leaking-uninitialized-stack-memory-in-FSGEOMETRY_V1.patch, bugfix/all/xfs-zero-proper-structure-size-for-geometry-calls.patch]

Modified: active/CVE-2011-1078
===================================================================
--- active/CVE-2011-1078	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2011-1078	2011-04-18 11:43:31 UTC (rev 2256)
@@ -3,9 +3,10 @@
 References:
  https://lkml.org/lkml/2011/2/14/49
 Notes:
+ jmm> Fixed in 2.6.38.3
 Bugs:
 upstream: released (2.6.39-rc1) [c4c896e1471aec3b004a693c689f60be3b17ac86]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: needed
 2.6.26-lenny-security: pending (2.6.26-26lenny3) [bugfix/all/bluetooth-sco-fix-information-leak-to-userspace.patch]
-2.6.32-squeeze-security: pending (2.6.32-32) [bugfix/all/bluetooth-sco-fix-information-leak-to-userspace.patch]
+2.6.32-squeeze-security: released (2.6.32-32) [bugfix/all/bluetooth-sco-fix-information-leak-to-userspace.patch]

Modified: active/CVE-2011-1079
===================================================================
--- active/CVE-2011-1079	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2011-1079	2011-04-18 11:43:31 UTC (rev 2256)
@@ -3,9 +3,10 @@
 References:
  https://lkml.org/lkml/2011/2/14/50
 Notes:
+ jmm> Fixed in 2.6.38.3
 Bugs:
 upstream: released (2.6.39-rc1) [43629f8f5ea32a998d06d1bb41eefa0e821ff573]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: needed
 2.6.26-lenny-security: pending (2.6.26-26lenny3) [bugfix/all/bluetooth-bnep-fix-buffer-overflow.patch]
 2.6.32-squeeze-security: released (2.6.32-32) [bugfix/all/bluetooth-bnep-fix-buffer-overflow.patch]

Modified: active/CVE-2011-1080
===================================================================
--- active/CVE-2011-1080	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2011-1080	2011-04-18 11:43:31 UTC (rev 2256)
@@ -2,9 +2,10 @@
 Description: ebtables stack infoleak
 References:
 Notes:
+ jmm> Fixed in 2.6.38.3
 Bugs:
 upstream: released (2.6.39-rc1) [d846f71195d57b0bbb143382647c2c6638b04c5a]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: needed
 2.6.26-lenny-security: pending (2.6.26-26lenny3) [bugfix/all/bridge-netfilter-fix-information-leak.patch]
-2.6.32-squeeze-security: pending (2.6.32-32) [bugfix/all/bridge-netfilter-fix-information-leak.patch]
+2.6.32-squeeze-security: released (2.6.32-32) [bugfix/all/bridge-netfilter-fix-information-leak.patch]

Modified: active/CVE-2011-1170
===================================================================
--- active/CVE-2011-1170	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2011-1170	2011-04-18 11:43:31 UTC (rev 2256)
@@ -4,9 +4,10 @@
  https://bugzilla.redhat.com/CVE-2011-1170
  http://git.kernel.org/?p=linux/kernel/git/kaber/nf-next-2.6.git;a=commitdiff;h=42eab94fff18cb1091d3501cd284d6bd6cc9c143
 Notes:
+ jmm> Fixed in 2.6.38.3
 Bugs:
 upstream: released (2.6.39-rc1) [42eab94fff18cb1091d3501cd284d6bd6cc9c143]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: needed
 2.6.26-lenny-security: pending (2.6.26-26lenny3) [bugfix/all/netfilter-arp_tables-fix-infoleak-to-userspace.patch]
-2.6.32-squeeze-security: pending (2.6.32-32) [bugfix/all/netfilter-arp_tables-fix-infoleak-to-userspace.patch]
+2.6.32-squeeze-security: released (2.6.32-32) [bugfix/all/netfilter-arp_tables-fix-infoleak-to-userspace.patch]

Modified: active/CVE-2011-1171
===================================================================
--- active/CVE-2011-1171	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2011-1171	2011-04-18 11:43:31 UTC (rev 2256)
@@ -6,7 +6,7 @@
 Notes:
 Bugs:
 upstream: released (2.6.39-rc1) [78b79876761b86653df89c48a7010b5cbd41a84a]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: needed
 2.6.26-lenny-security: pending (2.6.26-26lenny3) [bugfix/all/netfilter-ip_tables-fix-infoleak-to-userspace.patch]
-2.6.32-squeeze-security: pending (2.6.32-32) [bugfix/all/netfilter-ip_tables-fix-infoleak-to-userspace.patch]
+2.6.32-squeeze-security: released (2.6.32-32) [bugfix/all/netfilter-ip_tables-fix-infoleak-to-userspace.patch]

Modified: active/CVE-2011-1172
===================================================================
--- active/CVE-2011-1172	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2011-1172	2011-04-18 11:43:31 UTC (rev 2256)
@@ -4,9 +4,10 @@
  https://bugzilla.redhat.com/CVE-2011-1172
  http://git.kernel.org/?p=linux/kernel/git/kaber/nf-next-2.6.git;a=commitdiff;h=6a8ab060779779de8aea92ce3337ca348f973f54
 Notes:
+ jmm> Fixed in 2.6.38.3
 Bugs:
 upstream: released (2.6.39-rc1) [6a8ab060779779de8aea92ce3337ca348f973f54]
-2.6.32-upstream-stable: pending (2.6.32.37)
-linux-2.6:
+2.6.32-upstream-stable: released (2.6.32.37)
+linux-2.6: needed
 2.6.26-lenny-security: pending (2.6.26-26lenny3) [bugfix/all/ipv6-netfilter-ip6_tables-fix-infoleak-to-userspace.patch]
 2.6.32-squeeze-security: released (2.6.32-32) [bugfix/all/ipv6-netfilter-ip6_tables-fix-infoleak-to-userspace.patch]

Modified: active/CVE-2011-1173
===================================================================
--- active/CVE-2011-1173	2011-04-15 14:30:01 UTC (rev 2255)
+++ active/CVE-2011-1173	2011-04-18 11:43:31 UTC (rev 2256)
@@ -4,9 +4,10 @@
  https://bugzilla.redhat.com/show_bug.cgi?id=591815#c14
  http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git;a=commitdiff;h=67c5c6cb8129c595f21e88254a3fc6b3b841ae8e
 Notes:
+ jmm> Fixed in 2.6.38.3
 Bugs:
 upstream: released (2.6.39-rc1) [67c5c6cb8129c595f21e88254a3fc6b3b841ae8e]
-2.6.32-upstream-stable: pending (2.6.32.37)
+2.6.32-upstream-stable: released (2.6.32.37)
 linux-2.6: needed
 2.6.26-lenny-security: pending (2.6.26-26lenny3) [bugfix/all/econet-4-byte-infoleak-to-the-network.patch]
 2.6.32-squeeze-security: released (2.6.32-32) [bugfix/all/econet-4-byte-infoleak-to-the-network.patch]

More information about the kernel-sec-discuss mailing list