[kernel-sec-discuss] r2563 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Mon Dec 12 13:27:43 UTC 2011
Author: jmm
Date: 2011-12-12 13:27:42 +0000 (Mon, 12 Dec 2011)
New Revision: 2563
Modified:
active/CVE-2011-2189
active/CVE-2011-2203
active/CVE-2011-2494
active/CVE-2011-4081
Log:
updates for 2.6.32 LTS
CVE-2011-2189 ignored for stable/oldstable
Modified: active/CVE-2011-2189
===================================================================
--- active/CVE-2011-2189 2011-12-10 12:07:10 UTC (rev 2562)
+++ active/CVE-2011-2189 2011-12-12 13:27:42 UTC (rev 2563)
@@ -5,8 +5,8 @@
Notes:
jmm> Only exploitable with CAP_NET_ADMIN
Bugs:
-upstream:
-2.6.32-upstream-stable:
-sid:
-2.6.26-lenny-security:
-2.6.32-squeeze-security:
+upstream: released (2.6.35)
+2.6.32-upstream-stable: ignored "triggerable with CAP_NET_ADMIN only, vsftpd attack vector was fixed"
+sid: released (2.6.35-1)
+2.6.26-lenny-security: ignored "triggerable with CAP_NET_ADMIN only, vsftpd attack vector was fixed"
+2.6.32-squeeze-security: ignored "triggerable with CAP_NET_ADMIN only, vsftpd attack vector was fixed"
Modified: active/CVE-2011-2203
===================================================================
--- active/CVE-2011-2203 2011-12-10 12:07:10 UTC (rev 2562)
+++ active/CVE-2011-2203 2011-12-12 13:27:42 UTC (rev 2563)
@@ -4,7 +4,7 @@
https://lkml.org/lkml/2011/6/8/154
http://thread.gmane.org/gmane.linux.kernel/1191663
Notes:
- Patch has been proposed, but not reviewed or applied.
+ jmm> Submitted for 2.6.32
Bugs:
upstream: released (3.2-rc1) [434a964daa14b9db083ce20404a4a2add54d037a]
2.6.32-upstream-stable: needed
Modified: active/CVE-2011-2494
===================================================================
--- active/CVE-2011-2494 2011-12-10 12:07:10 UTC (rev 2562)
+++ active/CVE-2011-2494 2011-12-12 13:27:42 UTC (rev 2563)
@@ -2,6 +2,7 @@
References:
https://patchwork.kernel.org/patch/916042/
Notes:
+ jmm> Submitted for stable@
Bugs:
upstream: released (3.1-rc7) [1a51410abe7d0ee4b1d112780f46df87d3621043]
2.6.32-upstream-stable: needed
Modified: active/CVE-2011-4081
===================================================================
--- active/CVE-2011-4081 2011-12-10 12:07:10 UTC (rev 2562)
+++ active/CVE-2011-4081 2011-12-12 13:27:42 UTC (rev 2563)
@@ -6,6 +6,7 @@
Notes:
Not sure if this is exploitable without AF_ALG sockets. Upstream
change was cc'd to stable for 2.6.37+.
+ jmm> Submitted for 2.6.32
Bugs:
upstream: released (3.1) [7ed47b7d142ec99ad6880bbbec51e9f12b3af74c]
2.6.32-upstream-stable: needed
More information about the kernel-sec-discuss
mailing list