[kernel-sec-discuss] r3052 - active

Moritz Muehlenhoff jmm at alioth.debian.org
Thu Aug 29 07:52:32 UTC 2013 

Author: jmm
Date: 2013-08-29 07:52:10 +0000 (Thu, 29 Aug 2013)
New Revision: 3052

Added:
   active/CVE-2013-2895
   active/CVE-2013-2896
   active/CVE-2013-2897
Log:
more HID issues


Added: active/CVE-2013-2895
===================================================================
--- active/CVE-2013-2895	                        (rev 0)
+++ active/CVE-2013-2895	2013-08-29 07:52:10 UTC (rev 3052)
@@ -0,0 +1,12 @@
+Description: logitech-dj: local DoS / information leak
+References:
+ http://marc.info/?l=linux-input&m=137772188314631&w=1
+Notes:
+ also needs http://marc.info/?l=linux-input&m=137772181214612&w=1
+Bugs:
+upstream: needed
+2.6.32-upstream-stable: N/A "Introduced in 3.2 with 534a7b8e10ec55d9f521e68c20dbb3634c25b98a"
+sid: needed
+3.2-wheezy-security: needed
+2.6.32-squeeze-security: N/A "Introduced in 3.2 with 534a7b8e10ec55d9f521e68c20dbb3634c25b98a"
+3.2-upstream-stable: needed

Added: active/CVE-2013-2896
===================================================================
--- active/CVE-2013-2896	                        (rev 0)
+++ active/CVE-2013-2896	2013-08-29 07:52:10 UTC (rev 3052)
@@ -0,0 +1,11 @@
+Description: hid-ntrig local DoS through NULL deref
+References:
+ http://marc.info/?l=linux-input&m=137772189314633&w=1
+Notes:
+Bugs:
+upstream: needed
+2.6.32-upstream-stable: needed
+sid: needed
+3.2-wheezy-security: needed
+2.6.32-squeeze-security: needed
+3.2-upstream-stable: needed

Added: active/CVE-2013-2897
===================================================================
--- active/CVE-2013-2897	                        (rev 0)
+++ active/CVE-2013-2897	2013-08-29 07:52:10 UTC (rev 3052)
@@ -0,0 +1,11 @@
+Description: HID multitouch heap overwrite / NULL dereg
+References:
+ http://marc.info/?l=linux-input&m=137772190214635&w=1
+Notes:
+Bugs:
+upstream: needed
+2.6.32-upstream-stable: N/A "Introduced in 2.6.38 with 5519cab477b61326963c8d523520db0342862b63"
+sid: needed
+3.2-wheezy-security: needed
+2.6.32-squeeze-security: N/A "Introduced in 2.6.38 with 5519cab477b61326963c8d523520db0342862b63"
+3.2-upstream-stable: needed

More information about the kernel-sec-discuss mailing list