[kernel-sec-discuss] r2201 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Mar 1 10:50:09 UTC 2011
Author: jmm
Date: 2011-03-01 10:50:08 +0000 (Tue, 01 Mar 2011)
New Revision: 2201
Added:
active/CVE-2011-1020
active/CVE-2011-1021
Log:
new kernel issues
Added: active/CVE-2011-1020
===================================================================
--- active/CVE-2011-1020 (rev 0)
+++ active/CVE-2011-1020 2011-03-01 10:50:08 UTC (rev 2201)
@@ -0,0 +1,11 @@
+Candidate: CVE-2011-1020
+Description: /proc/$pid/ leaks contents across setuid exec
+References:
+ https://lkml.org/lkml/2011/2/7/368
+Notes:
+Bugs:
+upstream: needed
+2.6.32-upstream-stable: needed
+linux-2.6: needed
+2.6.26-lenny-security:
+2.6.32-squeeze-security: needed
Added: active/CVE-2011-1021
===================================================================
--- active/CVE-2011-1021 (rev 0)
+++ active/CVE-2011-1021 2011-03-01 10:50:08 UTC (rev 2201)
@@ -0,0 +1,11 @@
+Candidate: CVE-2011-1021
+Description:
+References:
+ http://jon.oberheide.org/files/american-sign-language.c
+Notes:
+Bugs:
+upstream: released (2.6.37) [ed3aada1bf34c5a9e98af167f125f8a740fc726a]
+2.6.32-upstream-stable: N/A "Introduced in a25ee9200eef07377e1703697afbb5d81f89e500"
+linux-2.6: released (2.6.37-1)
+2.6.26-lenny-security: N/A "Introduced in a25ee9200eef07377e1703697afbb5d81f89e500"
+2.6.32-squeeze-security: N/A "Introduced in a25ee9200eef07377e1703697afbb5d81f89e500"
More information about the kernel-sec-discuss
mailing list