[kernel-sec-discuss] r2439 - active retired

Thu Aug 11 17:37:12 UTC 2011

Author: jmm
Date: 2011-08-11 17:37:11 +0000 (Thu, 11 Aug 2011)
New Revision: 2439

Added:
   retired/CVE-2010-memcontrol-null-ptr-dereference
   retired/CVE-2011-2493
Removed:
   active/CVE-2010-memcontrol-null-ptr-dereference
   active/CVE-2011-2493
Log:
retire


Deleted: active/CVE-2010-memcontrol-null-ptr-dereference
===================================================================

--- active/CVE-2010-memcontrol-null-ptr-dereference	2011-08-11 17:36:29 UTC (rev 2438)
+++ active/CVE-2010-memcontrol-null-ptr-dereference	2011-08-11 17:37:11 UTC (rev 2439)
@@ -1,11 +0,0 @@
-Candidate:
-Description:
- memcontrol null ptr dereference
-References:
-Notes:
-Bugs:
-upstream: released (2.6.34-rc6) [93d5c9be]
-2.6.32-upstream-stable: released (2.6.32.13) [2d554beb]
-sid: released (2.6.32-13) [bugfix/all/stable/2.6.32.13.patch]
-2.6.26-lenny-security: N/A "vulnerable code not present"
-2.6.32-squeeze-security: released (2.6.32-13) [bugfix/all/stable/2.6.32.13.patch]

Deleted: active/CVE-2011-2493
===================================================================
--- active/CVE-2011-2493	2011-08-11 17:36:29 UTC (rev 2438)
+++ active/CVE-2011-2493	2011-08-11 17:37:11 UTC (rev 2439)
@@ -1,10 +0,0 @@
-Description: ext4: init timer earlier to avoid a kernel panic in __save_error_info
-References:
- https://bugzilla.kernel.org/show_bug.cgi?id=32082
-Notes:
-Bugs:
-upstream: released (2.6.39) [0449641130f5652b344ef6fa39fa019d7e94660a]
-2.6.32-upstream-stable: N/A "sbi->s_err_report didn't yet exist
-sid: released (2.6.39-1)
-2.6.26-lenny-security: N/A "sbi->s_err_report didn't yet exist"
-2.6.32-squeeze-security: N/A "sbi->s_err_report didn't yet exist; reproducer verified to not work"

Copied: retired/CVE-2010-memcontrol-null-ptr-dereference (from rev 2438, active/CVE-2010-memcontrol-null-ptr-dereference)
===================================================================
--- retired/CVE-2010-memcontrol-null-ptr-dereference	                        (rev 0)
+++ retired/CVE-2010-memcontrol-null-ptr-dereference	2011-08-11 17:37:11 UTC (rev 2439)
@@ -0,0 +1,11 @@
+Candidate:
+Description:
+ memcontrol null ptr dereference
+References:
+Notes:
+Bugs:
+upstream: released (2.6.34-rc6) [93d5c9be]
+2.6.32-upstream-stable: released (2.6.32.13) [2d554beb]
+sid: released (2.6.32-13) [bugfix/all/stable/2.6.32.13.patch]
+2.6.26-lenny-security: N/A "vulnerable code not present"
+2.6.32-squeeze-security: released (2.6.32-13) [bugfix/all/stable/2.6.32.13.patch]

Copied: retired/CVE-2011-2493 (from rev 2438, active/CVE-2011-2493)
===================================================================
--- retired/CVE-2011-2493	                        (rev 0)
+++ retired/CVE-2011-2493	2011-08-11 17:37:11 UTC (rev 2439)
@@ -0,0 +1,10 @@
+Description: ext4: init timer earlier to avoid a kernel panic in __save_error_info
+References:
+ https://bugzilla.kernel.org/show_bug.cgi?id=32082
+Notes:
+Bugs:
+upstream: released (2.6.39) [0449641130f5652b344ef6fa39fa019d7e94660a]
+2.6.32-upstream-stable: N/A "sbi->s_err_report didn't yet exist
+sid: released (2.6.39-1)
+2.6.26-lenny-security: N/A "sbi->s_err_report didn't yet exist"
+2.6.32-squeeze-security: N/A "sbi->s_err_report didn't yet exist; reproducer verified to not work"


