[kernel-sec-discuss] r2800 - active

[Moritz Muehlenhoff]

Author: jmm
Date: 2013-02-06 15:56:28 +0000 (Wed, 06 Feb 2013)
New Revision: 2800

Added:
   active/CVE-2013-0216
   active/CVE-2013-0217
Log:
new xen DoS


Added: active/CVE-2013-0216
===================================================================
--- active/CVE-2013-0216	                        (rev 0)
+++ active/CVE-2013-0216	2013-02-06 15:56:28 UTC (rev 2800)
@@ -0,0 +1,10 @@
+Description: Linux netback DoS: memory leak on an error path which is guest triggerable.
+References:
+ http://seclists.org/oss-sec/2013/q1/234
+Notes:
+Bugs:
+upstream: needed
+2.6.32-upstream-stable:
+sid: needed
+2.6.32-squeeze-security:
+3.2-upstream-stable:

Added: active/CVE-2013-0217
===================================================================
--- active/CVE-2013-0217	                        (rev 0)
+++ active/CVE-2013-0217	2013-02-06 15:56:28 UTC (rev 2800)
@@ -0,0 +1,10 @@
+Description: Linux netback DoS: failure to sanity check the ring producer/consumer pointers
+References:
+ http://seclists.org/oss-sec/2013/q1/234
+Notes:
+Bugs:
+upstream: needed
+2.6.32-upstream-stable:
+sid: needed
+2.6.32-squeeze-security:
+3.2-upstream-stable: