[kernel-sec-discuss] r3120 - active retired

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Oct 21 05:16:16 UTC 2013 

Author: jmm
Date: 2013-10-21 05:15:55 +0000 (Mon, 21 Oct 2013)
New Revision: 3120

Added:
   retired/CVE-2013-2894
   retired/CVE-2013-4343
Removed:
   active/CVE-2013-2894
   active/CVE-2013-4343
Modified:
   retired/CVE-2013-1858
Log:
retire


Deleted: active/CVE-2013-2894
===================================================================
--- active/CVE-2013-2894	2013-10-21 05:14:28 UTC (rev 3119)
+++ active/CVE-2013-2894	2013-10-21 05:15:55 UTC (rev 3120)
@@ -1,12 +0,0 @@
-Description: lenovo-tpkbd local DoS through zeroing out too much
-References:
- http://marc.info/?l=linux-input&m=137772187514628&w=1
-Notes:
- also needs http://marc.info/?l=linux-input&m=137772181214612&w=1
-Bugs:
-upstream: released (3.12-rc2) [0a9cd0a80ac559357c6a90d26c55270ed752aa26, 331415ff16a12147d57d5c953f3a961b7ede348b]
-2.6.32-upstream-stable: N/A "Introduced in 3.6 with commit c1dcad2d32d0252e8a3023d20311b52a187ecda3"
-sid: released (3.11.5-1)
-3.2-wheezy-security: N/A "Introduced in 3.6 with commit c1dcad2d32d0252e8a3023d20311b52a187ecda3"
-2.6.32-squeeze-security: N/A "Introduced in 3.6 with commit c1dcad2d32d0252e8a3023d20311b52a187ecda3"
-3.2-upstream-stable: N/A "Introduced in 3.6 with commit c1dcad2d32d0252e8a3023d20311b52a187ecda3"

Deleted: active/CVE-2013-4343
===================================================================
--- active/CVE-2013-4343	2013-10-21 05:14:28 UTC (rev 3119)
+++ active/CVE-2013-4343	2013-10-21 05:15:55 UTC (rev 3120)
@@ -1,11 +0,0 @@
-Description: Use-after-free in TUNSETIFF
-References:
- http://www.spinics.net/lists/netdev/msg250066.html
-Notes:
-Bugs:
-upstream: released (3.12-rc2) [662ca437e714caaab855b12415d6ffd815985bc0]
-2.6.32-upstream-stable: N/A "Introduced in 3.8 with c8d68e6be1c3b242f1c598595830890b65cea64a"
-sid: released (3.11.5-1)
-3.2-wheezy-security: N/A "Introduced in 3.8 with c8d68e6be1c3b242f1c598595830890b65cea64a"
-2.6.32-squeeze-security: N/A "Introduced in 3.8 with c8d68e6be1c3b242f1c598595830890b65cea64a"
-3.2-upstream-stable: N/A "Introduced in 3.8 with c8d68e6be1c3b242f1c598595830890b65cea64a"

Modified: retired/CVE-2013-1858
===================================================================
--- retired/CVE-2013-1858	2013-10-21 05:14:28 UTC (rev 3119)
+++ retired/CVE-2013-1858	2013-10-21 05:15:55 UTC (rev 3120)
@@ -5,7 +5,7 @@
  Prior to 3.8, CLONE_NEWUSER required CAP_SYS_ADMIN && CAP_SETUID &&
  CAP_SETGID, so no privilege escalation is possible.
 Bugs:
-upstream: pending [e66eded8309ebf679d3d3c1f5820d1f2ca332c71]
+upstream: released (3.9) [e66eded8309ebf679d3d3c1f5820d1f2ca332c71]
 2.6.32-upstream-stable: N/A
 sid: N/A
 2.6.32-squeeze-security: N/A

Copied: retired/CVE-2013-2894 (from rev 3119, active/CVE-2013-2894)
===================================================================
--- retired/CVE-2013-2894	                        (rev 0)
+++ retired/CVE-2013-2894	2013-10-21 05:15:55 UTC (rev 3120)
@@ -0,0 +1,12 @@
+Description: lenovo-tpkbd local DoS through zeroing out too much
+References:
+ http://marc.info/?l=linux-input&m=137772187514628&w=1
+Notes:
+ also needs http://marc.info/?l=linux-input&m=137772181214612&w=1
+Bugs:
+upstream: released (3.12-rc2) [0a9cd0a80ac559357c6a90d26c55270ed752aa26, 331415ff16a12147d57d5c953f3a961b7ede348b]
+2.6.32-upstream-stable: N/A "Introduced in 3.6 with commit c1dcad2d32d0252e8a3023d20311b52a187ecda3"
+sid: released (3.11.5-1)
+3.2-wheezy-security: N/A "Introduced in 3.6 with commit c1dcad2d32d0252e8a3023d20311b52a187ecda3"
+2.6.32-squeeze-security: N/A "Introduced in 3.6 with commit c1dcad2d32d0252e8a3023d20311b52a187ecda3"
+3.2-upstream-stable: N/A "Introduced in 3.6 with commit c1dcad2d32d0252e8a3023d20311b52a187ecda3"


Property changes on: retired/CVE-2013-2894
___________________________________________________________________
Added: svn:mergeinfo
   + 

Copied: retired/CVE-2013-4343 (from rev 3119, active/CVE-2013-4343)
===================================================================
--- retired/CVE-2013-4343	                        (rev 0)
+++ retired/CVE-2013-4343	2013-10-21 05:15:55 UTC (rev 3120)
@@ -0,0 +1,11 @@
+Description: Use-after-free in TUNSETIFF
+References:
+ http://www.spinics.net/lists/netdev/msg250066.html
+Notes:
+Bugs:
+upstream: released (3.12-rc2) [662ca437e714caaab855b12415d6ffd815985bc0]
+2.6.32-upstream-stable: N/A "Introduced in 3.8 with c8d68e6be1c3b242f1c598595830890b65cea64a"
+sid: released (3.11.5-1)
+3.2-wheezy-security: N/A "Introduced in 3.8 with c8d68e6be1c3b242f1c598595830890b65cea64a"
+2.6.32-squeeze-security: N/A "Introduced in 3.8 with c8d68e6be1c3b242f1c598595830890b65cea64a"
+3.2-upstream-stable: N/A "Introduced in 3.8 with c8d68e6be1c3b242f1c598595830890b65cea64a"


Property changes on: retired/CVE-2013-4343
___________________________________________________________________
Added: svn:mergeinfo
   +

More information about the kernel-sec-discuss mailing list