[kernel-sec-discuss] r2507 - active

Moritz Muehlenhoff jmm at alioth.debian.org
Sun Sep 25 18:37:07 UTC 2011


Author: jmm
Date: 2011-09-25 18:37:06 +0000 (Sun, 25 Sep 2011)
New Revision: 2507

Modified:
   active/CVE-2011-2484
   active/CVE-2011-2491
   active/CVE-2011-2492
   active/CVE-2011-2495
   active/CVE-2011-2496
   active/CVE-2011-2497
   active/CVE-2011-2525
   active/CVE-2011-2928
   active/CVE-2011-3188
   active/CVE-2011-3191
Log:
fixes from DSA


Modified: active/CVE-2011-2484
===================================================================
--- active/CVE-2011-2484	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-2484	2011-09-25 18:37:06 UTC (rev 2507)
@@ -6,5 +6,5 @@
 upstream: released (3.0-rc5) [26c4caea9d697043cc5a458b96411b86d7f6babd]
 2.6.32-upstream-stable: released (2.6.32.43)
 sid: released (2.6.39-3)
-2.6.26-lenny-security: pending (2.6.26-26lenny4) [bugfix/all/taskstats-don-t-allow-duplicate-entries-in-listener-mode.patch]
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/taskstats-don-t-allow-duplicate-entries-in-listener-mode.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/taskstats-don-t-allow-duplicate-entries-in-listener-mode.patch]

Modified: active/CVE-2011-2491
===================================================================
--- active/CVE-2011-2491	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-2491	2011-09-25 18:37:06 UTC (rev 2507)
@@ -3,7 +3,7 @@
 Notes:
 Bugs:
 upstream: released (3.0-rc5) [0b760113a3a155269a3fba93a409c640031dd68f]
-2.6.32-upstream-stable:
+2.6.32-upstream-stable: needed
 sid: released (3.0.0-1)
-2.6.26-lenny-security: pending (2.6.26-24lenny4) [bugfix/all/nlm-dont-hang-forever-on-nlm-unlock-requests.patch]
+2.6.26-lenny-security: released (2.6.26-24lenny4) [bugfix/all/nlm-dont-hang-forever-on-nlm-unlock-requests.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/nlm-dont-hang-forever-on-nlm-unlock-requests.patch]

Modified: active/CVE-2011-2492
===================================================================
--- active/CVE-2011-2492	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-2492	2011-09-25 18:37:06 UTC (rev 2507)
@@ -6,5 +6,5 @@
 upstream: released (3.0-rc4) [8d03e971cf403305217b8e62db3a2e5ad2d6263f]
 2.6.32-upstream-stable: needed
 sid: released (3.0.0-1)
-2.6.26-lenny-security: pending (2.6.26-26lenny4) [bugfix/all/CVE-2011-2492.patch]
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/CVE-2011-2492.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/bluetooth-l2cap-and-rfcomm-fix-1-byte-infoleak-to-userspace.patch]

Modified: active/CVE-2011-2495
===================================================================
--- active/CVE-2011-2495	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-2495	2011-09-25 18:37:06 UTC (rev 2507)
@@ -6,5 +6,5 @@
 upstream: released (3.0-rc6) [1d1221f375c94ef961ba8574ac4f85c8870ddd51, 293eb1e7772b25a93647c798c7b89bf26c2da2e0]
 2.6.32-upstream-stable: released (2.6.32.44)
 sid: released (3.0.0-1) 
-2.6.26-lenny-security: pending (2.6.26-26lenny4) [bugfix/all/proc-restrict-access-to-proc-pid-io.patch]
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/proc-restrict-access-to-proc-pid-io.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/proc-restrict-access-to-proc-pid-io.patch, bugfix/all/proc-fix-a-race-in-do_io_accounting.patch]

Modified: active/CVE-2011-2496
===================================================================
--- active/CVE-2011-2496	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-2496	2011-09-25 18:37:06 UTC (rev 2507)
@@ -9,5 +9,5 @@
 upstream: released (2.6.39) [982134ba62618c2d69fbbbd166d0a11ee3b7e3d8, a626ca6a656450e9f4df91d0dda238fff23285f4, 42c36f63ac1366ab0ecc2d5717821362c259f517]
 2.6.32-upstream-stable: needed
 sid: released (2.6.39-1)
-2.6.26-lenny-security: pending (2.6.26-26lenny4) [bugfix/all/mm-avoid-wrapping-vm_pgoff-in-mremap.patch, bugfix/all/vm-fix-vm_pgoff-wrap-in-stack-expansion.patch, bugfix/all/vm-fix-vm_pgoff-wrap-in-upward-expansion.patch]
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/mm-avoid-wrapping-vm_pgoff-in-mremap.patch, bugfix/all/vm-fix-vm_pgoff-wrap-in-stack-expansion.patch, bugfix/all/vm-fix-vm_pgoff-wrap-in-upward-expansion.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/stable/2.6.32.37.patch, bugfix/all/vm-fix-vm_pgoff-wrap-in-stack-expansion.patch, bugfix/all/vm-fix-vm_pgoff-wrap-in-upward-expansion.patch]

Modified: active/CVE-2011-2497
===================================================================
--- active/CVE-2011-2497	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-2497	2011-09-25 18:37:06 UTC (rev 2507)
@@ -7,5 +7,5 @@
 upstream: released (3.0) [7ac28817536797fd40e9646452183606f9e17f71]
 2.6.32-upstream-stable: needed
 sid: released (2.6.39-3)
-2.6.26-lenny-security: pending (2.6.26-26lenny4) [bugfix/all/bluetooth-prevent-buffer-overflow-in-l2cap-config-request.patch]
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/bluetooth-prevent-buffer-overflow-in-l2cap-config-request.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/bluetooth-prevent-buffer-overflow-in-l2cap-config-request.patch]

Modified: active/CVE-2011-2525
===================================================================
--- active/CVE-2011-2525	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-2525	2011-09-25 18:37:06 UTC (rev 2507)
@@ -5,5 +5,5 @@
 upstream: released (2.6.35) [53b0f08042f04813cd1a7473dacd3edfacb28eb3]
 2.6.32-upstream-stable: needed
 sid: released (2.6.35-1)
-2.6.26-lenny-security: pending (2.6.26-26lenny4) [bugfix/all/net_sched-Fix-qdisc_notify.patch]
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/net_sched-Fix-qdisc_notify.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/net_sched-Fix-qdisc_notify.patch]

Modified: active/CVE-2011-2928
===================================================================
--- active/CVE-2011-2928	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-2928	2011-09-25 18:37:06 UTC (rev 2507)
@@ -6,5 +6,5 @@
 upstream: pending (3.1-rc3) [338d0f0a6fbc82407864606f5b64b75aeb3c70f2]
 2.6.32-upstream-stable: released (2.6.32.46)
 sid: released (3.0.0-2)
-2.6.26-lenny-security: pending (2.6.26-26lenny4) [bugfix/all/befs-validate-length-of-long-symbolic-links.patch]
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/befs-validate-length-of-long-symbolic-links.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/befs-validate-length-of-long-symbolic-links.patch]

Modified: active/CVE-2011-3188
===================================================================
--- active/CVE-2011-3188	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-3188	2011-09-25 18:37:06 UTC (rev 2507)
@@ -5,5 +5,5 @@
 upstream: released (3.1-rc1) [bc0b96b54a21246e377122d54569eef71cec535f, 6e5714eaf77d79ae1c8b47e3e040ff5411b717ec]
 2.6.32-upstream-stable: released (2.6.32.45)
 sid: needed
-2.6.26-lenny-security: pending (2.6.26-26lenny4) [bugfix/all/CVE-2011-3188.patch]
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/CVE-2011-3188.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/CVE-2011-3188.patch]

Modified: active/CVE-2011-3191
===================================================================
--- active/CVE-2011-3191	2011-09-25 18:33:44 UTC (rev 2506)
+++ active/CVE-2011-3191	2011-09-25 18:37:06 UTC (rev 2507)
@@ -7,5 +7,5 @@
 upstream: needed
 2.6.32-upstream-stable: needed
 sid: needed
-2.6.26-lenny-security: pending (2.6.26-26lenny4) [bugfix/all/cifs-fix-possible-memory-corruption-in-CIFSFindNext.patch]
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/cifs-fix-possible-memory-corruption-in-CIFSFindNext.patch]
 2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/cifs-fix-possible-memory-corruption-in-CIFSFindNext.patch]




More information about the kernel-sec-discuss mailing list