[kernel-sec-discuss] r2741 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Aug 15 11:46:57 UTC 2012
Author: jmm
Date: 2012-08-15 11:46:56 +0000 (Wed, 15 Aug 2012)
New Revision: 2741
Modified:
active/CVE-2011-3347
active/CVE-2012-1179
active/CVE-2012-2313
active/CVE-2012-2319
active/CVE-2012-3430
Log:
updates
Modified: active/CVE-2011-3347
===================================================================
--- active/CVE-2011-3347 2012-08-15 11:46:34 UTC (rev 2740)
+++ active/CVE-2011-3347 2012-08-15 11:46:56 UTC (rev 2741)
@@ -3,9 +3,10 @@
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3347
http://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3347.html
Notes:
+ jmm> Introduced by 1da87b7fafebb7874622602f79a5fec0425aede7 in 2.6.36
Bugs:
upstream: released (3.2) [ecd0bf0f7b280bac3ac7419ed3aac84cd92878e9, 4c5102f94c175d81790a3a288e85efd4a8a1649a, c0e64ef4899df4cedc872871e54e2c069d29e519, 343e43c02850a3abcd22bd144e5bdbc92fdd273c]
-2.6.32-upstream-stable:
+2.6.32-upstream-stable: N/A "Vulnerable code not present"
sid: released (3.2-1)
-2.6.32-squeeze-security: ignored (2.6.32-44) "needs port"
+2.6.32-squeeze-security: N/A "Vulnerable code not present"
3.2-upstream-stable: N/A
Modified: active/CVE-2012-1179
===================================================================
--- active/CVE-2012-1179 2012-08-15 11:46:34 UTC (rev 2740)
+++ active/CVE-2012-1179 2012-08-15 11:46:56 UTC (rev 2741)
@@ -1,9 +1,11 @@
Description: thp: __split_huge_page() mapcount != page_mapcount BUG_ON()
References:
Notes:
+ jmm> Transparent huge pages were introduced in 2.6.38, so this doesn't affect
+ jmm> Squeeze
Bugs:
upstream: released (3.4-rc1) [1a5a9906d4e8d1976b701f889d8f35d54b928f25]
-2.6.32-upstream-stable: needed
+2.6.32-upstream-stable: N/A "Vulnerable code not present"
sid: released (3.2.14-1)
-2.6.32-squeeze-security: ignored (2.6.32-44) "needs port"
+2.6.32-squeeze-security: N/A "Vulnerable code not present"
3.2-upstream-stable: released (3.2.14) [c6cf24ba30c7225667827245cfd2bc98f7f5ed2b]
Modified: active/CVE-2012-2313
===================================================================
--- active/CVE-2012-2313 2012-08-15 11:46:34 UTC (rev 2740)
+++ active/CVE-2012-2313 2012-08-15 11:46:56 UTC (rev 2741)
@@ -8,6 +8,6 @@
Bugs:
upstream: released (3.4-rc4) [1bb57e940e1958e40d51f2078f50c3a96a9b2d75]
2.6.32-upstream-stable: needed
-sid: pending (3.2.19-1)
+sid: released (3.2.19-1)
2.6.32-squeeze-security: pending (2.6.32-45squeeze1) [bugfix/all/dl2k-use-standard-defines-from-mii.h.patch, bugfix/all/dl2k-Clean-up-rio_ioctl.patch]
3.2-upstream-stable: released (3.2.19) [bdd06be083b51fa7bdf04d8c8b699870f29bae69]
Modified: active/CVE-2012-2319
===================================================================
--- active/CVE-2012-2319 2012-08-15 11:46:34 UTC (rev 2740)
+++ active/CVE-2012-2319 2012-08-15 11:46:56 UTC (rev 2741)
@@ -4,6 +4,6 @@
Bugs:
upstream: released (3.4-rc6) [6f24f892871acc47b40dd594c63606a17c714f77]
2.6.32-upstream-stable: needed
-sid: pending (3.2.17-1)
+sid: released (3.2.17-1)
2.6.32-squeeze-security: pending (2.6.32-45squeeze1) [bugfix/all/hfsplus-Fix-potential-buffer-overflows.patch]
3.2-upstream-stable: released (3.2.17) [d4af6eb924ce29b9e46037134ca69ce085b5c36c]
Modified: active/CVE-2012-3430
===================================================================
--- active/CVE-2012-3430 2012-08-15 11:46:34 UTC (rev 2740)
+++ active/CVE-2012-3430 2012-08-15 11:46:56 UTC (rev 2741)
@@ -2,7 +2,7 @@
References:
Notes:
Bugs:
-upstream: pending [06b6a1cf6e776426766298d055bb3991957d90a7]
+upstream: released (3.6-rc1) [06b6a1cf6e776426766298d055bb3991957d90a7]
2.6.32-upstream-stable: needed
sid: needed
2.6.32-squeeze-security: needed
More information about the kernel-sec-discuss
mailing list