[kernel-sec-discuss] r2873 - active

Ben Hutchings benh at alioth.debian.org
Mon Mar 18 04:17:03 UTC 2013 

Author: benh
Date: 2013-03-18 04:16:41 +0000 (Mon, 18 Mar 2013)
New Revision: 2873

Modified:
   active/CVE-2012-5517
   active/CVE-2013-0914
   active/CVE-2013-1763
   active/CVE-2013-1773
   active/CVE-2013-1792
   active/CVE-2013-2546
   active/CVE-2013-2547
   active/CVE-2013-2548
Log:
Update issues fixed in 3.9-rc[1-3] and 3.2.41-rc1

Modified: active/CVE-2012-5517
===================================================================
--- active/CVE-2012-5517	2013-03-18 04:06:02 UTC (rev 2872)
+++ active/CVE-2012-5517	2013-03-18 04:16:41 UTC (rev 2873)
@@ -6,4 +6,4 @@
 2.6.32-upstream-stable: N/A "Introduced in 2.6.35 with 1f522509c77a5dea8dc384b735314f03908a6415"
 sid:
 2.6.32-squeeze-security: N/A "Introduced in 2.6.35 with 1f522509c77a5dea8dc384b735314f03908a6415"
-3.2-upstream-stable:
+3.2-upstream-stable: pending [mm-hotplug-correctly-add-new-zone-to-all-other-nodes-zone-lists.patch]

Modified: active/CVE-2013-0914
===================================================================
--- active/CVE-2013-0914	2013-03-18 04:06:02 UTC (rev 2872)
+++ active/CVE-2013-0914	2013-03-18 04:16:41 UTC (rev 2873)
@@ -3,8 +3,8 @@
  https://lkml.org/lkml/2013/3/11/498
 Notes:
 Bugs:
-upstream: pending [2ca39528c01a933f6689cd6505ce65bd6d68a530]
+upstream: released (3.9-rc3) [2ca39528c01a933f6689cd6505ce65bd6d68a530]
 2.6.32-upstream-stable: needed
 sid: needed
 2.6.32-squeeze-security: needed
-3.2-upstream-stable: needed
+3.2-upstream-stable: pending [signal-always-clear-sa_restorer-on-execve.patch]

Modified: active/CVE-2013-1763
===================================================================
--- active/CVE-2013-1763	2013-03-18 04:06:02 UTC (rev 2872)
+++ active/CVE-2013-1763	2013-03-18 04:16:41 UTC (rev 2873)
@@ -3,7 +3,7 @@
  http://thread.gmane.org/gmane.linux.network/260061
 Notes:
 Bugs:
-upstream: pending [6e601a53566d84e1ffd25e7b6fe0b6894ffd79c0]
+upstream: released (3.9-rc1) [6e601a53566d84e1ffd25e7b6fe0b6894ffd79c0]
 2.6.32-upstream-stable: N/A "Vulnerable code not present"
 sid: N/A "Vulnerable code not present"
 2.6.32-squeeze-security: N/A "Vulnerable code not present"

Modified: active/CVE-2013-1773
===================================================================
--- active/CVE-2013-1773	2013-03-18 04:06:02 UTC (rev 2872)
+++ active/CVE-2013-1773	2013-03-18 04:16:41 UTC (rev 2873)
@@ -6,4 +6,4 @@
 2.6.32-upstream-stable:
 sid: released (3.2.15-1) [features/x86/hyperv/0001-NLS-improve-UTF8-UTF16-string-conversion-routine.patch]
 2.6.32-squeeze-security:
-3.2-upstream-stable: needed
+3.2-upstream-stable: pending [nls-improve-utf8-utf16-string-conversion-routine.patch]

Modified: active/CVE-2013-1792
===================================================================
--- active/CVE-2013-1792	2013-03-18 04:06:02 UTC (rev 2872)
+++ active/CVE-2013-1792	2013-03-18 04:16:41 UTC (rev 2873)
@@ -3,8 +3,9 @@
  http://lkml.org/lkml/2013/3/6/535
 Notes:
 Bugs:
-upstream: pending [0da9dfdd2cd9889201bc6f6f43580c99165cd087]
+upstream: released (3.9-rc3) [0da9dfdd2cd9889201bc6f6f43580c99165cd087]
 2.6.32-upstream-stable: needed
 sid: needed
 2.6.32-squeeze-security: needed
-3.2-upstream-stable: needed
+3.2-upstream-stable: pending [keys-fix-race-with-concurrent-install_user_keyrings.patch]
+

Modified: active/CVE-2013-2546
===================================================================
--- active/CVE-2013-2546	2013-03-18 04:06:02 UTC (rev 2872)
+++ active/CVE-2013-2546	2013-03-18 04:16:41 UTC (rev 2873)
@@ -9,4 +9,4 @@
 2.6.32-upstream-stable: 
 sid: needed
 2.6.32-squeeze-security:
-3.2-upstream-stable: needed
+3.2-upstream-stable: pending [crypto-user-fix-info-leaks-in-report-api.patch]

Modified: active/CVE-2013-2547
===================================================================
--- active/CVE-2013-2547	2013-03-18 04:06:02 UTC (rev 2872)
+++ active/CVE-2013-2547	2013-03-18 04:16:41 UTC (rev 2873)
@@ -9,4 +9,4 @@
 2.6.32-upstream-stable: 
 sid: needed
 2.6.32-squeeze-security:
-3.2-upstream-stable: needed
+3.2-upstream-stable: pending [crypto-user-fix-info-leaks-in-report-api.patch]

Modified: active/CVE-2013-2548
===================================================================
--- active/CVE-2013-2548	2013-03-18 04:06:02 UTC (rev 2872)
+++ active/CVE-2013-2548	2013-03-18 04:16:41 UTC (rev 2873)
@@ -9,4 +9,4 @@
 2.6.32-upstream-stable: 
 sid: needed
 2.6.32-squeeze-security:
-3.2-upstream-stable: needed
+3.2-upstream-stable: pending [crypto-user-fix-info-leaks-in-report-api.patch]
\ No newline at end of file

More information about the kernel-sec-discuss mailing list