[kernel-sec-discuss] r2433 - active

Dann Frazier dannf at alioth.debian.org
Thu Aug 11 06:40:24 UTC 2011 

Author: dannf
Date: 2011-08-11 06:40:23 +0000 (Thu, 11 Aug 2011)
New Revision: 2433

Modified:
   active/CVE-2011-1576
   active/CVE-2011-2484
   active/CVE-2011-2491
   active/CVE-2011-2492
   active/CVE-2011-2493
Log:
a few squeeze updates

Modified: active/CVE-2011-1576
===================================================================
--- active/CVE-2011-1576	2011-08-10 10:11:04 UTC (rev 2432)
+++ active/CVE-2011-1576	2011-08-11 06:40:23 UTC (rev 2433)
@@ -7,4 +7,4 @@
 2.6.32-upstream-stable: needed
 sid: N/A "This issue does not affect the upstream kernel as the code path in question is no longer reachable due to changes in the VLAN subsystem."
 2.6.26-lenny-security: N/A "code not present"
-2.6.32-squeeze-security: needed
+2.6.32-squeeze-security: pending (2.6.32-35squeeze1) [bugfix/all/net-fix-memory-leak+corruption-on-VLAN-GRO_DROP.patch]

Modified: active/CVE-2011-2484
===================================================================
--- active/CVE-2011-2484	2011-08-10 10:11:04 UTC (rev 2432)
+++ active/CVE-2011-2484	2011-08-11 06:40:23 UTC (rev 2433)
@@ -7,4 +7,4 @@
 2.6.32-upstream-stable: released (2.6.32.43)
 sid: released (2.6.39-3)
 2.6.26-lenny-security: needed
-2.6.32-squeeze-security: needed
+2.6.32-squeeze-security: pending (2.6.32-35squeeze1) [bugfix/all/taskstats-don-t-allow-duplicate-entries-in-listener-mode.patch]

Modified: active/CVE-2011-2491
===================================================================
--- active/CVE-2011-2491	2011-08-10 10:11:04 UTC (rev 2432)
+++ active/CVE-2011-2491	2011-08-11 06:40:23 UTC (rev 2433)
@@ -6,4 +6,4 @@
 2.6.32-upstream-stable:
 sid: released (3.0.0-1)
 2.6.26-lenny-security:
-2.6.32-squeeze-security:
+2.6.32-squeeze-security: pending (2.6.32-35squeeze) [bugfix/all/nlm-dont-hang-forever-on-nlm-unlock-requests.patch]

Modified: active/CVE-2011-2492
===================================================================
--- active/CVE-2011-2492	2011-08-10 10:11:04 UTC (rev 2432)
+++ active/CVE-2011-2492	2011-08-11 06:40:23 UTC (rev 2433)
@@ -7,4 +7,4 @@
 2.6.32-upstream-stable: needed
 sid: released (3.0.0-1)
 2.6.26-lenny-security: needed
-2.6.32-squeeze-security: needed
+2.6.32-squeeze-security: pending (2.6.32-35squeeze1) [bugfix/all/bluetooth-l2cap-and-rfcomm-fix-1-byte-infoleak-to-userspace.patch]

Modified: active/CVE-2011-2493
===================================================================
--- active/CVE-2011-2493	2011-08-10 10:11:04 UTC (rev 2432)
+++ active/CVE-2011-2493	2011-08-11 06:40:23 UTC (rev 2433)
@@ -6,5 +6,5 @@
 upstream: released (2.6.39) [0449641130f5652b344ef6fa39fa019d7e94660a]
 2.6.32-upstream-stable: 
 sid: released (2.6.39-1)
-2.6.26-lenny-security:
-2.6.32-squeeze-security:
+2.6.26-lenny-security: N/A "sbi->s_err_report didn't yet exist"
+2.6.32-squeeze-security: N/A "sbi->s_err_report didn't yet exist; reproducer verified to not work"

More information about the kernel-sec-discuss mailing list