[kernel-sec-discuss] r4026 - active

Ben Hutchings benh at moszumanska.debian.org
Tue Dec 1 03:58:31 UTC 2015 

Author: benh
Date: 2015-12-01 03:58:31 +0000 (Tue, 01 Dec 2015)
New Revision: 4026

Modified:
   active/CVE-2013-7446
   active/CVE-2015-7799
   active/CVE-2015-8104
   active/CVE-2015-8374
Log:
Mark issues pending/ignored for squeeze

Modified: active/CVE-2013-7446
===================================================================
--- active/CVE-2013-7446	2015-12-01 03:08:38 UTC (rev 4025)
+++ active/CVE-2013-7446	2015-12-01 03:58:31 UTC (rev 4026)
@@ -13,5 +13,5 @@
 2.6.32-upstream-stable: needed
 sid: needed
 3.16-jessie-security: needed
-3.2-wheezy-security: needed
+3.2-wheezy-security: pending (3.2.73-2+deb7u1) [bugfix/all/unix-avoid-use-after-free-in-ep_remove_wait_queue.patch]
 2.6.32-squeeze-security: pending (2.6.32-48squeeze17) [bugfix/all/unix-avoid-use-after-free-in-ep_remove_wait_queue.patch]

Modified: active/CVE-2015-7799
===================================================================
--- active/CVE-2015-7799	2015-12-01 03:08:38 UTC (rev 4025)
+++ active/CVE-2015-7799	2015-12-01 03:58:31 UTC (rev 4026)
@@ -9,5 +9,5 @@
 2.6.32-upstream-stable: needed
 sid: needed
 3.16-jessie-security: pending (3.16.7-ckt20-1)
-3.2-wheezy-security: needed
+3.2-wheezy-security: pending (3.2.73-2+deb7u1) [bugfix/all/isdn_ppp-add-checks-for-allocation-failure-in-isdn_p.patch, bugfix/all/ppp-slip-validate-vj-compression-slot-parameters-com.patch]
 2.6.32-squeeze-security: pending (2.6.32-48squeeze17) [bugfix/all/isdn_ppp-add-checks-for-allocation-failure-in-isdn_p.patch, bugfix/all/ppp-slip-validate-vj-compression-slot-parameters-com.patch]

Modified: active/CVE-2015-8104
===================================================================
--- active/CVE-2015-8104	2015-12-01 03:08:38 UTC (rev 4025)
+++ active/CVE-2015-8104	2015-12-01 03:58:31 UTC (rev 4026)
@@ -11,5 +11,5 @@
 2.6.32-upstream-stable: needed
 sid: pending (4.2.6-2) [bugfix/x86/kvm-svm-unconditionally-intercept-DB.patch]
 3.16-jessie-security: pending (3.16.7-ckt11-1+deb8u7) [bugfix/x86/kvm-svm-unconditionally-intercept-DB.patch]
-3.2-wheezy-security: needed
+3.2-wheezy-security: pending (3.2.73-2+deb7u1) [bugfix/x86/kvm-svm-unconditionally-intercept-db.patch]
 2.6.32-squeeze-security: ignored "KVM not supported in squeeze LTS"

Modified: active/CVE-2015-8374
===================================================================
--- active/CVE-2015-8374	2015-12-01 03:08:38 UTC (rev 4025)
+++ active/CVE-2015-8374	2015-12-01 03:58:31 UTC (rev 4026)
@@ -8,5 +8,5 @@
 2.6.32-upstream-stable: ignored "btrfs in 2.6.32 is just a tech preview and not usable for production"
 sid: needed
 3.16-jessie-security: needed
-3.2-wheezy-security: needed
+3.2-wheezy-security: ignored "btrfs in wheezy is just a tech preview and not usable for production"
 2.6.32-squeeze-security: ignored "btrfs in squeeze is just a tech preview and not usable for production"

More information about the kernel-sec-discuss mailing list