[kernel-sec-discuss] r3679 - active

Ben Hutchings benh at moszumanska.debian.org
Tue Feb 17 04:56:16 UTC 2015 

Author: benh
Date: 2015-02-17 04:56:16 +0000 (Tue, 17 Feb 2015)
New Revision: 3679

Modified:
   active/CVE-2014-8559
   active/CVE-2015-1420
   active/CVE-2015-1593
Log:
Mark issues pending in wheezy-security

Modified: active/CVE-2014-8559
===================================================================
--- active/CVE-2014-8559	2015-02-17 01:51:48 UTC (rev 3678)
+++ active/CVE-2014-8559	2015-02-17 04:56:16 UTC (rev 3679)
@@ -14,7 +14,7 @@
 upstream: released (3.19-rc1) [946e51f2bf37f1656916eb75bd0742ba33983c28, ca5358ef75fc69fee5322a38a340f5739d997c10]
 2.6.32-upstream-stable: N/A
 sid: released (3.16.7-ckt4-1)
-3.2-wheezy-security: needed
+3.2-wheezy-security: pending (3.2.65-1+deb7u2) [bugfix/all/move-d_rcu-from-overlapping-d_child-to-overlapping-d_alias.patch, bugfix/all/deal-with-deadlock-in-d_walk.patch, bugfix/all/dcache-fix-locking-bugs-in-backported-deal-with-deadlock-in-d_walk.patch]
 2.6.32-squeeze-security: N/A
 3.16-upstream-stable: released (3.16.7-ckt4)
 3.2-upstream-stable: released (3.2.66) [move-d_rcu-from-overlapping-d_child-to-overlapping-d_alias.patch, deal-with-deadlock-in-d_walk.patch]

Modified: active/CVE-2015-1420
===================================================================
--- active/CVE-2015-1420	2015-02-17 01:51:48 UTC (rev 3678)
+++ active/CVE-2015-1420	2015-02-17 04:56:16 UTC (rev 3679)
@@ -6,7 +6,7 @@
 upstream: needed
 2.6.32-upstream-stable: N/A "Introduced in 2.6.39 with becfd1f37544798cbdfd788f32c827160fab98c1"
 sid: needed
-3.2-wheezy-security: needed
+3.2-wheezy-security: pending (3.2.65-1+deb7u2) [bugfix/all/vfs-read-file_handle-only-once-in-handle_to_path.patch]
 2.6.32-squeeze-security: N/A "Introduced in 2.6.39 with becfd1f37544798cbdfd788f32c827160fab98c1"
 3.16-upstream-stable: needed
 3.2-upstream-stable: needed

Modified: active/CVE-2015-1593
===================================================================
--- active/CVE-2015-1593	2015-02-17 01:51:48 UTC (rev 3678)
+++ active/CVE-2015-1593	2015-02-17 04:56:16 UTC (rev 3679)
@@ -2,12 +2,13 @@
 References:
  http://hmarco.org/bugs/linux-ASLR-integer-overflow.html
  https://lkml.org/lkml/2015/1/7/811
+ http://article.gmane.org/gmane.linux.kernel/1888210
 Notes:
 Bugs:
 upstream: needed
 2.6.32-upstream-stable: needed
 sid: needed
-3.2-wheezy-security: needed
+3.2-wheezy-security: pending (3.2.65-1+deb7u2) [bugfix/all/aslr-fix-stack-randomization-on-64-bit-systems.patch]
 2.6.32-squeeze-security: needed
 3.16-upstream-stable: needed
 3.2-upstream-stable: needed

More information about the kernel-sec-discuss mailing list