[kernel-sec-discuss] r3078 - active retired

Wed Sep 4 12:55:50 UTC 2013

Author: jmm
Date: 2013-09-04 12:55:29 +0000 (Wed, 04 Sep 2013)
New Revision: 3078

Added:
   retired/CVE-2011-4131
   retired/CVE-2012-2375
Removed:
   active/CVE-2011-4131
   active/CVE-2012-2375
Log:
retire


Deleted: active/CVE-2011-4131
===================================================================

--- active/CVE-2011-4131	2013-09-04 12:54:16 UTC (rev 3077)
+++ active/CVE-2011-4131	2013-09-04 12:55:29 UTC (rev 3078)
@@ -1,15 +0,0 @@
-Description: nfs4_getfacl decoding kernel oops
-References:
- http://www.spinics.net/lists/linux-nfs/msg25288.html
-Notes:
- bwh: The upstream fix relies on the rather larger commit 6650239a4b01
- 'NFS: Don't use vm_map_ram() in readdir'.  If we can get a test case then
- it may be feasible to implement graceful failure instead.  Otherwise this
- is probably unfixable.
-Bugs:
-upstream: released (3.3-rc5) [e5012d1f3861d18c7f3814e757c1c3ab3741dbcd, bf118a342f10dafe44b14451a1392c3254629a1f, de040beccd52bb5fcac90031505384d037b1111c, 331818f1c468a24e581aedcbe52af799366a9dfe]
-2.6.32-upstream-stable: ignored "too complex to backport for too little gain"
-sid: released (3.2.19-1)
-3.2-wheezy-security: released (3.2.19-1)
-2.6.32-squeeze-security: ignored "too complex to backport for too little gain"
-3.2-upstream-stable: released (3.2.19) [e5012d1f3861d18c7f3814e757c1c3ab3741dbcd, 4a818b4288d5a897b0e928dd0cd1e1e29501159f, 4910b0c6a122dade90898c079027423a3204ac44, 84e017e3ff4113a32c827f2d7f96e1a9b1f7a677]

Deleted: active/CVE-2012-2375
===================================================================
--- active/CVE-2012-2375	2013-09-04 12:54:16 UTC (rev 3077)
+++ active/CVE-2012-2375	2013-09-04 12:55:29 UTC (rev 3078)
@@ -1,11 +0,0 @@
-Description: incomplete fix for CVE-2011-4131
-References:
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-2375
-Notes:
-Bugs:
-upstream: released (3.4) [20e0fa98b751facf9a1101edaefbc19c82616a68,5794d21ef4639f0e33440927bb903f9598c21e92,5a00689930ab975fdd1b37b034475017e460cf2a]
-2.6.32-upstream-stable: ignored "too complex to backport for too little gain"
-sid: released (3.2.19-1)
-2.6.32-upstream-stable: ignored "too complex to backport for too little gain"
-3.2-wheezy-security: released (3.2.19-1)
-3.2-upstream-stable: released (3.2.19) [a94841724154dac38ce5239d1d88c00e758dc20d, b7d52ac86a9753520a696af25d333e3451eeae92, 84e017e3ff4113a32c827f2d7f96e1a9b1f7a677]

Copied: retired/CVE-2011-4131 (from rev 3077, active/CVE-2011-4131)
===================================================================
--- retired/CVE-2011-4131	                        (rev 0)
+++ retired/CVE-2011-4131	2013-09-04 12:55:29 UTC (rev 3078)
@@ -0,0 +1,15 @@
+Description: nfs4_getfacl decoding kernel oops
+References:
+ http://www.spinics.net/lists/linux-nfs/msg25288.html
+Notes:
+ bwh: The upstream fix relies on the rather larger commit 6650239a4b01
+ 'NFS: Don't use vm_map_ram() in readdir'.  If we can get a test case then
+ it may be feasible to implement graceful failure instead.  Otherwise this
+ is probably unfixable.
+Bugs:
+upstream: released (3.3-rc5) [e5012d1f3861d18c7f3814e757c1c3ab3741dbcd, bf118a342f10dafe44b14451a1392c3254629a1f, de040beccd52bb5fcac90031505384d037b1111c, 331818f1c468a24e581aedcbe52af799366a9dfe]
+2.6.32-upstream-stable: ignored "too complex to backport for too little gain"
+sid: released (3.2.19-1)
+3.2-wheezy-security: released (3.2.19-1)
+2.6.32-squeeze-security: ignored "too complex to backport for too little gain"
+3.2-upstream-stable: released (3.2.19) [e5012d1f3861d18c7f3814e757c1c3ab3741dbcd, 4a818b4288d5a897b0e928dd0cd1e1e29501159f, 4910b0c6a122dade90898c079027423a3204ac44, 84e017e3ff4113a32c827f2d7f96e1a9b1f7a677]


Property changes on: retired/CVE-2011-4131
___________________________________________________________________
Added: svn:mergeinfo
   + 

Copied: retired/CVE-2012-2375 (from rev 3077, active/CVE-2012-2375)
===================================================================
--- retired/CVE-2012-2375	                        (rev 0)
+++ retired/CVE-2012-2375	2013-09-04 12:55:29 UTC (rev 3078)
@@ -0,0 +1,11 @@
+Description: incomplete fix for CVE-2011-4131
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-2375
+Notes:
+Bugs:
+upstream: released (3.4) [20e0fa98b751facf9a1101edaefbc19c82616a68,5794d21ef4639f0e33440927bb903f9598c21e92,5a00689930ab975fdd1b37b034475017e460cf2a]
+2.6.32-upstream-stable: ignored "too complex to backport for too little gain"
+sid: released (3.2.19-1)
+2.6.32-upstream-stable: ignored "too complex to backport for too little gain"
+3.2-wheezy-security: released (3.2.19-1)
+3.2-upstream-stable: released (3.2.19) [a94841724154dac38ce5239d1d88c00e758dc20d, b7d52ac86a9753520a696af25d333e3451eeae92, 84e017e3ff4113a32c827f2d7f96e1a9b1f7a677]


Property changes on: retired/CVE-2012-2375
___________________________________________________________________
Added: svn:mergeinfo
   + 


