[kernel-sec-discuss] r2476 - dsa-texts

Dann Frazier dannf at alioth.debian.org
Mon Sep 5 20:06:45 UTC 2011


Author: dannf
Date: 2011-09-05 20:06:44 +0000 (Mon, 05 Sep 2011)
New Revision: 2476

Modified:
   dsa-texts/2.6.32-35squeeze1
Log:
Add text for remaining issues


Modified: dsa-texts/2.6.32-35squeeze1
===================================================================
--- dsa-texts/2.6.32-35squeeze1	2011-09-03 14:17:42 UTC (rev 2475)
+++ dsa-texts/2.6.32-35squeeze1	2011-09-05 20:06:44 UTC (rev 2476)
@@ -1,7 +1,7 @@
 ----------------------------------------------------------------------
-Debian Security Advisory DSA-2240-1                security at debian.org
-http://www.debian.org/security/                           dann frazier
-May 24, 2011                        http://www.debian.org/security/faq
+Debian Security Advisory DSA-XXXX-1                security at debian.org
+http://www.debian.org/security/       Moritz Muehlenhoff, Dann Frazier
+September XX, 2011                  http://www.debian.org/security/faq
 ----------------------------------------------------------------------
 
 Package        : linux-2.6
@@ -20,11 +20,15 @@
 
 CVE-2011-1020 
 
-    foo
+    Kees Cook discovered an issue in the /proc filesystem that allows local
+    users to gain access to sensitive process information after execution
+    of a setuid binary.
 
 CVE-2011-1576 
 
-    foo
+    Ryan Sweat discovered an issue in the VLAN implementation. Local users
+    may be able to cause a kernel memory leak, resulting in a denial of
+    service.
 
 CVE-2011-2484 
 
@@ -34,14 +38,15 @@
 
 CVE-2011-2491
 
-    foo
+    Vasily Averin discovered an issue with the NFS locking implementation.
+    A malicious NFS server can cause a client to hang indefinitely in
+    an unlock call.
 
 CVE-2011-2492 
 
     Marek Kroemeke and Filip Palian discovered that uninitialised struct
     elements in the Bluetooth subsystem could lead to the information
     through leaked stack memory.
-    
 
 CVE-2011-2495 
 
@@ -56,8 +61,8 @@
 
 CVE-2011-2497
 
-    Dan Rosenberg discovered an integer underflow in the Bluetooth subsystem, which
-    could lead to denial of service or privilege escalation.
+    Dan Rosenberg discovered an integer underflow in the Bluetooth subsystem,
+    which could lead to denial of service or privilege escalation.
 
 CVE-2011-2517 
 
@@ -68,15 +73,22 @@
 
 CVE-2011-2525 
 
-    foo
+    Ben Pfaff reported an issue in the network scheduling code. A local
+    user could cause a denial of service (NULL pointer dereference) by
+    sending a specially crafted netlink message.
 
 CVE-2011-2700 
 
-    foo
+    Mauro Carvalho Chehab of Red Hat reported a buffer overflow issue in the 
+    driver for the Si4713 FM Radio Transmitter driver used by N900 devices.
+    Local users could exploit this issue to cause a denial of service or
+    ptotentially gain elevated privileges.
 
 CVE-2011-2723
 
-    foo
+    Brent Meshier reported an issue in the GRO (generic receive offload)
+    implementation. This can be exploited by remote users to create a
+    denial of service (system crash) in certain network device configurations.
 
 CVE-2011-2905 
 
@@ -106,11 +118,15 @@
 
 CVE-2011-3188 
 
-    foo
+    Dan Kaminsky reported a weakness of the sequence number generation in
+    the TCP protocol implementation. This can be used by remote attackers
+    to inject packets into an active session.
 
 CVE-2011-3191
 
-    foo
+    Darren Lavender reported an issue in the Common Internet File System (CIFS).
+    A malicious file server could cause memory corruption leading to a denial
+    of service.
 
 This update also includes a fix for a regression introduced with the previous
 security fix for CVE-2011-1768 (Debian: #633738)




More information about the kernel-sec-discuss mailing list