[kernel-sec-discuss] r2261 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Mon Apr 18 12:30:01 UTC 2011
Author: jmm
Date: 2011-04-18 12:29:56 +0000 (Mon, 18 Apr 2011)
New Revision: 2261
Added:
active/CVE-2011-1162
active/CVE-2011-1577
Log:
new issues
Added: active/CVE-2011-1162
===================================================================
--- active/CVE-2011-1162 (rev 0)
+++ active/CVE-2011-1162 2011-04-18 12:29:56 UTC (rev 2261)
@@ -0,0 +1,11 @@
+Candidate: CVE-2011-1162
+Description: char/tpm: zero buffer after copying to userspace
+References:
+ http://tpmdd.git.sourceforge.net/git/gitweb.cgi?p=tpmdd/tpmdd;a=commitdiff;h=44480e4077cd782aa8f54eb472b292547f030520
+Notes:
+Bugs:
+upstream: needed
+2.6.32-upstream-stable: needed
+linux-2.6: needed
+2.6.26-lenny-security: needed
+2.6.32-squeeze-security: needed
Added: active/CVE-2011-1577
===================================================================
--- active/CVE-2011-1577 (rev 0)
+++ active/CVE-2011-1577 2011-04-18 12:29:56 UTC (rev 2261)
@@ -0,0 +1,13 @@
+Candidate: CVE-2011-1577
+Description: Denial-of-service vulnerability in EFI partition handling
+References:
+ http://www.pre-cert.de/advisories/PRE-SA-2011-03.txt
+ http://www.spinics.net/lists/mm-commits/msg83274.html
+Notes:
+ jmm> No upstream fix as of 2011-04-18
+Bugs:
+upstream: needed
+2.6.32-upstream-stable: needed
+linux-2.6: needed
+2.6.26-lenny-security: needed
+2.6.32-squeeze-security: needed
More information about the kernel-sec-discuss
mailing list