[kernel-sec-discuss] r2579 - active retired

Moritz Muehlenhoff jmm at alioth.debian.org
Wed Dec 28 18:25:11 UTC 2011


Author: jmm
Date: 2011-12-28 18:25:10 +0000 (Wed, 28 Dec 2011)
New Revision: 2579

Added:
   retired/CVE-2011-2494
   retired/CVE-2011-4326
Removed:
   active/CVE-2011-2494
   active/CVE-2011-4326
Log:
retire


Deleted: active/CVE-2011-2494
===================================================================
--- active/CVE-2011-2494	2011-12-28 18:24:24 UTC (rev 2578)
+++ active/CVE-2011-2494	2011-12-28 18:25:10 UTC (rev 2579)
@@ -1,10 +0,0 @@
-Description: taskstats: restrict access to user (CVE-2011-2494)
-References:
- https://patchwork.kernel.org/patch/916042/
-Notes:
-Bugs:
-upstream: released (3.1-rc7) [1a51410abe7d0ee4b1d112780f46df87d3621043]
-2.6.32-upstream-stable: released (2.6.32.51)
-sid: released (3.0.0-5) [bugfix/all/Make-TASKSTATS-require-root-access.patch]
-2.6.26-lenny-security: ignored "too intrusive for oldstable backport"
-2.6.32-squeeze-security: released (2.6.32-40)

Deleted: active/CVE-2011-4326
===================================================================
--- active/CVE-2011-4326	2011-12-28 18:24:24 UTC (rev 2578)
+++ active/CVE-2011-4326	2011-12-28 18:25:10 UTC (rev 2579)
@@ -1,9 +0,0 @@
-Description: wrong headroom check in udp6_ufo_fragment() 
-References:
-Notes:
-Bugs:
-upstream: released (2.6.39) [a9cf73ea7ff78f52662c8658d93c226effbbedde]
-2.6.32-upstream-stable: released (2.6.32.49)
-sid: released (2.6.39-1)
-2.6.26-lenny-security: N/A "Vulnerable code not present"
-2.6.32-squeeze-security: released (2.6.32-40) [bugfix/all/stable/2.6.32.49.patch]

Copied: retired/CVE-2011-2494 (from rev 2578, active/CVE-2011-2494)
===================================================================
--- retired/CVE-2011-2494	                        (rev 0)
+++ retired/CVE-2011-2494	2011-12-28 18:25:10 UTC (rev 2579)
@@ -0,0 +1,10 @@
+Description: taskstats: restrict access to user (CVE-2011-2494)
+References:
+ https://patchwork.kernel.org/patch/916042/
+Notes:
+Bugs:
+upstream: released (3.1-rc7) [1a51410abe7d0ee4b1d112780f46df87d3621043]
+2.6.32-upstream-stable: released (2.6.32.51)
+sid: released (3.0.0-5) [bugfix/all/Make-TASKSTATS-require-root-access.patch]
+2.6.26-lenny-security: ignored "too intrusive for oldstable backport"
+2.6.32-squeeze-security: released (2.6.32-40)

Copied: retired/CVE-2011-4326 (from rev 2578, active/CVE-2011-4326)
===================================================================
--- retired/CVE-2011-4326	                        (rev 0)
+++ retired/CVE-2011-4326	2011-12-28 18:25:10 UTC (rev 2579)
@@ -0,0 +1,9 @@
+Description: wrong headroom check in udp6_ufo_fragment() 
+References:
+Notes:
+Bugs:
+upstream: released (2.6.39) [a9cf73ea7ff78f52662c8658d93c226effbbedde]
+2.6.32-upstream-stable: released (2.6.32.49)
+sid: released (2.6.39-1)
+2.6.26-lenny-security: N/A "Vulnerable code not present"
+2.6.32-squeeze-security: released (2.6.32-40) [bugfix/all/stable/2.6.32.49.patch]




More information about the kernel-sec-discuss mailing list