[kernel-sec-discuss] r2690 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed May 23 14:55:23 UTC 2012
Author: jmm
Date: 2012-05-23 14:55:22 +0000 (Wed, 23 May 2012)
New Revision: 2690
Added:
active/CVE-2012-2383
active/CVE-2012-2384
Log:
two new DRM issues not in stable
Added: active/CVE-2012-2383
===================================================================
--- active/CVE-2012-2383 (rev 0)
+++ active/CVE-2012-2383 2012-05-23 14:55:22 UTC (rev 2690)
@@ -0,0 +1,8 @@
+Description: overflow of cliprect kmalloc as args->num_cliprects is not bounded and passed in via a user ioctl
+References:
+Notes:
+Bugs:
+upstream: released (3.4) [ed8cd3b2cd61004cab85380c52b1817aca1ca49b]
+2.6.32-upstream-stable: N/A "Introduced in 2.6.39 with 8408c282"
+sid:
+2.6.32-squeeze-security: N/A "Introduced in 2.6.39 with 8408c282"
Added: active/CVE-2012-2384
===================================================================
--- active/CVE-2012-2384 (rev 0)
+++ active/CVE-2012-2384 2012-05-23 14:55:22 UTC (rev 2690)
@@ -0,0 +1,8 @@
+Description: overflow of args->buffer_count
+References:
+Notes:
+Bugs:
+upstream: released (3.4) [44afb3a04391a74309d16180d1e4f8386fdfa745]
+2.6.32-upstream-stable: N/A "Introduced in 2.6.38 with 432e58ed"
+sid:
+2.6.32-squeeze-security: N/A "Introduced in 2.6.38 with 432e58ed"
More information about the kernel-sec-discuss
mailing list