[kernel-sec-discuss] r3458 - active retired

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Aug 1 10:35:34 UTC 2014 

Author: jmm
Date: 2014-08-01 10:35:34 +0000 (Fri, 01 Aug 2014)
New Revision: 3458

Added:
   retired/CVE-2012-4542
Removed:
   active/CVE-2012-4542
Log:
retire, per recent ping on oss-sec this doesn't seem to get addressed in mainline


Deleted: active/CVE-2012-4542
===================================================================
--- active/CVE-2012-4542	2014-08-01 10:21:09 UTC (rev 3457)
+++ active/CVE-2012-4542	2014-08-01 10:35:34 UTC (rev 3458)
@@ -1,15 +0,0 @@
-Description: block: default SCSI command filter does not accomodate commands overlap across device classes
-References:
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-4542
- https://lkml.org/lkml/2013/1/24/279
- https://oss.oracle.com/git/?p=redpatch.git;a=commitdiff;h=76a274e17114abf1a77de6b651424648ce9e10c8
-Notes:
- jmm> the patches from https://lkml.org/lkml/2013/1/24/279 are not merged as of 2013-11-18
- jmm> Apparently an upstream fix is no longer planned/in the works
-Bugs:
-upstream: needed "no upstream fix as of 2013.11.19"
-2.6.32-upstream-stable: ignored "too intrusive to backport"
-sid: needed "no upstream fix as of 2013.11.19"
-2.6.32-squeeze-security: ignored "too intrusive to backport"
-3.2-upstream-stable: needed "no upstream fix as of 2013.11.19"
-3.2-wheezy-security: needed "no upstream fix as of 2013.11.19"
\ No newline at end of file

Copied: retired/CVE-2012-4542 (from rev 3457, active/CVE-2012-4542)
===================================================================
--- retired/CVE-2012-4542	                        (rev 0)
+++ retired/CVE-2012-4542	2014-08-01 10:35:34 UTC (rev 3458)
@@ -0,0 +1,15 @@
+Description: block: default SCSI command filter does not accomodate commands overlap across device classes
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-4542
+ https://lkml.org/lkml/2013/1/24/279
+ https://oss.oracle.com/git/?p=redpatch.git;a=commitdiff;h=76a274e17114abf1a77de6b651424648ce9e10c8
+Notes:
+ jmm> the patches from https://lkml.org/lkml/2013/1/24/279 are not merged as of 2013-11-18
+ jmm> Apparently an upstream fix is no longer planned/in the works
+Bugs:
+upstream: needed "no upstream fix as of 2013.11.19"
+2.6.32-upstream-stable: ignored "too intrusive to backport"
+sid: needed "no upstream fix as of 2013.11.19"
+2.6.32-squeeze-security: ignored "too intrusive to backport"
+3.2-upstream-stable: needed "no upstream fix as of 2013.11.19"
+3.2-wheezy-security: needed "no upstream fix as of 2013.11.19"
\ No newline at end of file


Property changes on: retired/CVE-2012-4542
___________________________________________________________________
Added: svn:mergeinfo
   +

More information about the kernel-sec-discuss mailing list