[kernel-sec-discuss] r4025 - active
Ben Hutchings
benh at moszumanska.debian.org
Tue Dec 1 03:08:38 UTC 2015
Author: benh
Date: 2015-12-01 03:08:38 +0000 (Tue, 01 Dec 2015)
New Revision: 4025
Modified:
active/CVE-2013-7446
active/CVE-2015-8324
Log:
Mark issues pending for squeeze
Modified: active/CVE-2013-7446
===================================================================
--- active/CVE-2013-7446 2015-12-01 02:43:37 UTC (rev 4024)
+++ active/CVE-2013-7446 2015-12-01 03:08:38 UTC (rev 4025)
@@ -3,6 +3,7 @@
- https://bugzilla.redhat.com/show_bug.cgi?id=1282688
- http://www.openwall.com/lists/oss-security/2015/11/18/9
- https://patchwork.ozlabs.org/patch/547061/
+ - https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit?id=7d267278a9ece963d77eefec61630223fce08c6c
Notes:
bwh> Patch claims this was introduced by commit ec0d215f9420, i.e. Linux 2.6.26
Bugs:
@@ -13,4 +14,4 @@
sid: needed
3.16-jessie-security: needed
3.2-wheezy-security: needed
-2.6.32-squeeze-security: needed
+2.6.32-squeeze-security: pending (2.6.32-48squeeze17) [bugfix/all/unix-avoid-use-after-free-in-ep_remove_wait_queue.patch]
Modified: active/CVE-2015-8324
===================================================================
--- active/CVE-2015-8324 2015-12-01 02:43:37 UTC (rev 4024)
+++ active/CVE-2015-8324 2015-12-01 03:08:38 UTC (rev 4025)
@@ -5,8 +5,8 @@
upstream: released (v2.6.34-rc1) [744692dc059845b2a3022119871846e74d4f6e11]
3.16-upstream-stable: N/A "Fixed before 3.16"
3.2-upstream-stable: N/A "Fixed before 3.2"
-2.6.32-upstream-stable:
+2.6.32-upstream-stable: needed
sid: released (2.6.37-1)
3.16-jessie-security: N/A "Fixed before 3.16"
3.2-wheezy-security: N/A "Fixed before 3.2"
-2.6.32-squeeze-security:
+2.6.32-squeeze-security: pending (2.6.32-48squeeze17) [bugfix/all/ext4-fix-null-dereference-in-ext4_fill_super.patch]
More information about the kernel-sec-discuss
mailing list