[kernel-sec-discuss] r3609 - active retired

Moritz Muehlenhoff jmm at moszumanska.debian.org
Sat Dec 13 23:23:56 UTC 2014 

Author: jmm
Date: 2014-12-13 23:23:55 +0000 (Sat, 13 Dec 2014)
New Revision: 3609

Added:
   retired/CVE-2014-4653
   retired/CVE-2014-4654
   retired/CVE-2014-4655
   retired/CVE-2014-4943
Removed:
   active/CVE-2014-4653
   active/CVE-2014-4654
   active/CVE-2014-4655
   active/CVE-2014-4943
Log:
retire


Deleted: active/CVE-2014-4653
===================================================================
--- active/CVE-2014-4653	2014-12-13 23:23:25 UTC (rev 3608)
+++ active/CVE-2014-4653	2014-12-13 23:23:55 UTC (rev 3609)
@@ -1,11 +0,0 @@
-Description: ALSA user controls use after free
-References:
-Notes:
-Bugs:
-upstream: released (3.16-rc2) [fd9f26e4eca5d08a27d12c0933fceef76ed9663d]
-2.6.32-upstream-stable: released (2.6.32.65)
-sid: released (3.14.9-1)
-3.2-wheezy-security: released (3.2.60-1) [bugfix/all/ALSA-control-Don-t-access-controls-outside-of-protec.patch]
-2.6.32-squeeze-security: released (2.6.32-48squeeze9)
-3.16-upstream-stable: N/A
-3.2-upstream-stable: released (3.2.61) [alsa-control-don-t-access-controls-outside-of-protected-regions.patch]

Deleted: active/CVE-2014-4654
===================================================================
--- active/CVE-2014-4654	2014-12-13 23:23:25 UTC (rev 3608)
+++ active/CVE-2014-4654	2014-12-13 23:23:55 UTC (rev 3609)
@@ -1,11 +0,0 @@
-Description: ALSA user controls use after free
-References:
-Notes:
-Bugs:
-upstream: released (3.16-rc2) [82262a46627bebb0febcc26664746c25cef08563]
-2.6.32-upstream-stable: released (2.6.32.65)
-sid: released (3.14.9-1)
-3.2-wheezy-security: released (3.2.60-1) [bugfix/all/ALSA-control-Fix-replacing-user-controls.patch]
-3.16-upstream-stable: N/A
-2.6.32-squeeze-security: released (2.6.32-48squeeze9)
-3.2-upstream-stable: released (3.2.61) [alsa-control-fix-replacing-user-controls.patch]

Deleted: active/CVE-2014-4655
===================================================================
--- active/CVE-2014-4655	2014-12-13 23:23:25 UTC (rev 3608)
+++ active/CVE-2014-4655	2014-12-13 23:23:55 UTC (rev 3609)
@@ -1,11 +0,0 @@
-Description: ALSA user controls use after free
-References:
-Notes:
-Bugs:
-upstream: released (3.16-rc2) [82262a46627bebb0febcc26664746c25cef08563]
-2.6.32-upstream-stable: released (2.6.32.65)
-sid: released (3.14.9-1)
-3.2-wheezy-security: released (3.2.60-1) [bugfix/all/ALSA-control-Fix-replacing-user-controls.patch]
-3.16-upstream-stable: N/A
-2.6.32-squeeze-security: released (2.6.32-48squeeze9)
-3.2-upstream-stable: released (3.2.61) [alsa-control-fix-replacing-user-controls.patch]

Deleted: active/CVE-2014-4943
===================================================================
--- active/CVE-2014-4943	2014-12-13 23:23:25 UTC (rev 3608)
+++ active/CVE-2014-4943	2014-12-13 23:23:55 UTC (rev 3609)
@@ -1,11 +0,0 @@
-Description: net/l2tp: don't fall back on UDP [get|set]sockopt
-References:
-Notes:
-Bugs:
-upstream: released (3.16-rc6) [3cf521f7dc87c031617fd47e4b7aa2593c2f3daf]
-2.6.32-upstream-stable: released (2.6.32.65)
-sid: released (3.14.13-1) [bugfix/all/net-l2tp-don-t-fall-back-on-UDP-get-set-sockopt.patch]
-3.2-wheezy-security: released (3.2.60-1+deb7u3) [bugfix/all/net-l2tp-don-t-fall-back-on-UDP-get-set-sockopt.patch]
-3.16-upstream-stable: N/A
-2.6.32-squeeze-security: released (2.6.32-48squeeze9) [bugfix/all/CVE-2014-4943.patch]
-3.2-upstream-stable: released (3.2.62) [net-l2tp-don-t-fall-back-on-udp-sockopt.patch]

Copied: retired/CVE-2014-4653 (from rev 3608, active/CVE-2014-4653)
===================================================================
--- retired/CVE-2014-4653	                        (rev 0)
+++ retired/CVE-2014-4653	2014-12-13 23:23:55 UTC (rev 3609)
@@ -0,0 +1,11 @@
+Description: ALSA user controls use after free
+References:
+Notes:
+Bugs:
+upstream: released (3.16-rc2) [fd9f26e4eca5d08a27d12c0933fceef76ed9663d]
+2.6.32-upstream-stable: released (2.6.32.65)
+sid: released (3.14.9-1)
+3.2-wheezy-security: released (3.2.60-1) [bugfix/all/ALSA-control-Don-t-access-controls-outside-of-protec.patch]
+2.6.32-squeeze-security: released (2.6.32-48squeeze9)
+3.16-upstream-stable: N/A
+3.2-upstream-stable: released (3.2.61) [alsa-control-don-t-access-controls-outside-of-protected-regions.patch]

Copied: retired/CVE-2014-4654 (from rev 3608, active/CVE-2014-4654)
===================================================================
--- retired/CVE-2014-4654	                        (rev 0)
+++ retired/CVE-2014-4654	2014-12-13 23:23:55 UTC (rev 3609)
@@ -0,0 +1,11 @@
+Description: ALSA user controls use after free
+References:
+Notes:
+Bugs:
+upstream: released (3.16-rc2) [82262a46627bebb0febcc26664746c25cef08563]
+2.6.32-upstream-stable: released (2.6.32.65)
+sid: released (3.14.9-1)
+3.2-wheezy-security: released (3.2.60-1) [bugfix/all/ALSA-control-Fix-replacing-user-controls.patch]
+3.16-upstream-stable: N/A
+2.6.32-squeeze-security: released (2.6.32-48squeeze9)
+3.2-upstream-stable: released (3.2.61) [alsa-control-fix-replacing-user-controls.patch]

Copied: retired/CVE-2014-4655 (from rev 3608, active/CVE-2014-4655)
===================================================================
--- retired/CVE-2014-4655	                        (rev 0)
+++ retired/CVE-2014-4655	2014-12-13 23:23:55 UTC (rev 3609)
@@ -0,0 +1,11 @@
+Description: ALSA user controls use after free
+References:
+Notes:
+Bugs:
+upstream: released (3.16-rc2) [82262a46627bebb0febcc26664746c25cef08563]
+2.6.32-upstream-stable: released (2.6.32.65)
+sid: released (3.14.9-1)
+3.2-wheezy-security: released (3.2.60-1) [bugfix/all/ALSA-control-Fix-replacing-user-controls.patch]
+3.16-upstream-stable: N/A
+2.6.32-squeeze-security: released (2.6.32-48squeeze9)
+3.2-upstream-stable: released (3.2.61) [alsa-control-fix-replacing-user-controls.patch]

Copied: retired/CVE-2014-4943 (from rev 3608, active/CVE-2014-4943)
===================================================================
--- retired/CVE-2014-4943	                        (rev 0)
+++ retired/CVE-2014-4943	2014-12-13 23:23:55 UTC (rev 3609)
@@ -0,0 +1,11 @@
+Description: net/l2tp: don't fall back on UDP [get|set]sockopt
+References:
+Notes:
+Bugs:
+upstream: released (3.16-rc6) [3cf521f7dc87c031617fd47e4b7aa2593c2f3daf]
+2.6.32-upstream-stable: released (2.6.32.65)
+sid: released (3.14.13-1) [bugfix/all/net-l2tp-don-t-fall-back-on-UDP-get-set-sockopt.patch]
+3.2-wheezy-security: released (3.2.60-1+deb7u3) [bugfix/all/net-l2tp-don-t-fall-back-on-UDP-get-set-sockopt.patch]
+3.16-upstream-stable: N/A
+2.6.32-squeeze-security: released (2.6.32-48squeeze9) [bugfix/all/CVE-2014-4943.patch]
+3.2-upstream-stable: released (3.2.62) [net-l2tp-don-t-fall-back-on-udp-sockopt.patch]

More information about the kernel-sec-discuss mailing list