[kernel-sec-discuss] r2427 - active retired
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Aug 9 14:02:44 UTC 2011
Author: jmm
Date: 2011-08-09 14:02:42 +0000 (Tue, 09 Aug 2011)
New Revision: 2427
Added:
retired/CVE-2011-1585
retired/CVE-2011-1767
retired/CVE-2011-1768
Removed:
active/CVE-2011-1585
active/CVE-2011-1767
active/CVE-2011-1768
Log:
retire issues
Deleted: active/CVE-2011-1585
===================================================================
--- active/CVE-2011-1585 2011-08-09 14:02:18 UTC (rev 2426)
+++ active/CVE-2011-1585 2011-08-09 14:02:42 UTC (rev 2427)
@@ -1,10 +0,0 @@
-Candidate: CVE-2011-1585
-Description: cifs session reuse
-References:
-Notes:
-Bugs:
-upstream: released (2.6.36) [4ff67b720c02c36e54d55b88c2931879b7db1cd2, fc87a40677bbe0937e2ff0642c7e83c9a4813f3d, 24e6cf92fde1f140d8eb0bf7cd24c2c78149b6b2]
-2.6.32-upstream-stable: released (2.6.32.44)
-sid: released (2.6.37-1)
-2.6.26-lenny-security: ignored "requires porting, an exploitation requires the ability to run mount.cifs w/ root privs"
-2.6.32-squeeze-security: released (2.6.32-34squeeze1) [bugfix/all/cifs-clean-up-cifs_find_smb_ses.patch, bugfix/all/cifs-fix-NULL-pointer-dereference-in-cifs_find_smb_ses.patch, bugfix/all/cifs-check-for-NULL-session-password.patch]
Deleted: active/CVE-2011-1767
===================================================================
--- active/CVE-2011-1767 2011-08-09 14:02:18 UTC (rev 2426)
+++ active/CVE-2011-1767 2011-08-09 14:02:42 UTC (rev 2427)
@@ -1,10 +0,0 @@
-Candidate: CVE-2011-1767
-Description: remote oops if ip_gre is compiled as module and packet comes at unfortunate moment of module loading
-References:
-Notes:
-Bugs:
-upstream: released (2.6.34) [c2892f02712e9516d72841d5c019ed6916329794]
-2.6.32-upstream-stable: released (2.6.32.44)
-sid: released (2.6.34-1)
-2.6.26-lenny-security: released (2.6.26-26lenny3) [bugfix/all/gre-fix-netns-vs-proto-registration-ordering.patch]
-2.6.32-squeeze-security: released (2.6.32-34squeeze1) [bugfix/all/gre-fix-netns-vs-proto-registration-ordering.patch]
Deleted: active/CVE-2011-1768
===================================================================
--- active/CVE-2011-1768 2011-08-09 14:02:18 UTC (rev 2426)
+++ active/CVE-2011-1768 2011-08-09 14:02:42 UTC (rev 2427)
@@ -1,10 +0,0 @@
-Candidate: CVE-2011-1768
-Description: receive hook can be called before netns setup is done, oopsing in net_generic()
-References:
-Notes:
-Bugs:
-upstream: released (2.6.34) [d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978]
-2.6.32-upstream-stable: released (2.6.32.44)
-sid: released (2.6.34-1)
-2.6.26-lenny-security: released (2.6.26-26lenny3) [bugfix/all/xfrm6_tunnel-join-error-paths-using-goto.patch, bugfix/all/xfrm6_tunnel-join-error-paths-using-goto.patch, bugfix/all/tunnels-fix-netns-vs-proto-registration-ordering.patch]
-2.6.32-squeeze-security: released (2.6.32-35) [bugfix/all/xfrm6_tunnel-join-error-paths-using-goto.patch, bugfix/all/tunnels-fix-netns-vs-proto-registration-ordering.patch]
Copied: retired/CVE-2011-1585 (from rev 2426, active/CVE-2011-1585)
===================================================================
--- retired/CVE-2011-1585 (rev 0)
+++ retired/CVE-2011-1585 2011-08-09 14:02:42 UTC (rev 2427)
@@ -0,0 +1,10 @@
+Candidate: CVE-2011-1585
+Description: cifs session reuse
+References:
+Notes:
+Bugs:
+upstream: released (2.6.36) [4ff67b720c02c36e54d55b88c2931879b7db1cd2, fc87a40677bbe0937e2ff0642c7e83c9a4813f3d, 24e6cf92fde1f140d8eb0bf7cd24c2c78149b6b2]
+2.6.32-upstream-stable: released (2.6.32.44)
+sid: released (2.6.37-1)
+2.6.26-lenny-security: ignored "requires porting, an exploitation requires the ability to run mount.cifs w/ root privs"
+2.6.32-squeeze-security: released (2.6.32-34squeeze1) [bugfix/all/cifs-clean-up-cifs_find_smb_ses.patch, bugfix/all/cifs-fix-NULL-pointer-dereference-in-cifs_find_smb_ses.patch, bugfix/all/cifs-check-for-NULL-session-password.patch]
Property changes on: retired/CVE-2011-1585
___________________________________________________________________
Added: svn:mergeinfo
+
Copied: retired/CVE-2011-1767 (from rev 2426, active/CVE-2011-1767)
===================================================================
--- retired/CVE-2011-1767 (rev 0)
+++ retired/CVE-2011-1767 2011-08-09 14:02:42 UTC (rev 2427)
@@ -0,0 +1,10 @@
+Candidate: CVE-2011-1767
+Description: remote oops if ip_gre is compiled as module and packet comes at unfortunate moment of module loading
+References:
+Notes:
+Bugs:
+upstream: released (2.6.34) [c2892f02712e9516d72841d5c019ed6916329794]
+2.6.32-upstream-stable: released (2.6.32.44)
+sid: released (2.6.34-1)
+2.6.26-lenny-security: released (2.6.26-26lenny3) [bugfix/all/gre-fix-netns-vs-proto-registration-ordering.patch]
+2.6.32-squeeze-security: released (2.6.32-34squeeze1) [bugfix/all/gre-fix-netns-vs-proto-registration-ordering.patch]
Property changes on: retired/CVE-2011-1767
___________________________________________________________________
Added: svn:mergeinfo
+
Copied: retired/CVE-2011-1768 (from rev 2426, active/CVE-2011-1768)
===================================================================
--- retired/CVE-2011-1768 (rev 0)
+++ retired/CVE-2011-1768 2011-08-09 14:02:42 UTC (rev 2427)
@@ -0,0 +1,10 @@
+Candidate: CVE-2011-1768
+Description: receive hook can be called before netns setup is done, oopsing in net_generic()
+References:
+Notes:
+Bugs:
+upstream: released (2.6.34) [d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978]
+2.6.32-upstream-stable: released (2.6.32.44)
+sid: released (2.6.34-1)
+2.6.26-lenny-security: released (2.6.26-26lenny3) [bugfix/all/xfrm6_tunnel-join-error-paths-using-goto.patch, bugfix/all/xfrm6_tunnel-join-error-paths-using-goto.patch, bugfix/all/tunnels-fix-netns-vs-proto-registration-ordering.patch]
+2.6.32-squeeze-security: released (2.6.32-35) [bugfix/all/xfrm6_tunnel-join-error-paths-using-goto.patch, bugfix/all/tunnels-fix-netns-vs-proto-registration-ordering.patch]
Property changes on: retired/CVE-2011-1768
___________________________________________________________________
Added: svn:mergeinfo
+
More information about the kernel-sec-discuss
mailing list