[kernel-sec-discuss] r4081 - active
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jan 5 16:28:44 UTC 2016
Author: carnil
Date: 2016-01-05 16:28:44 +0000 (Tue, 05 Jan 2016)
New Revision: 4081
Modified:
active/CVE-2015-7513
active/CVE-2015-7550
active/CVE-2015-8543
active/CVE-2015-8550
active/CVE-2015-8551
active/CVE-2015-8552
active/CVE-2015-8569
active/CVE-2015-8575
active/CVE-2015-8709
Log:
Mark CVE as released for DSA-3434-1
Modified: active/CVE-2015-7513
===================================================================
--- active/CVE-2015-7513 2016-01-05 13:50:14 UTC (rev 4080)
+++ active/CVE-2015-7513 2016-01-05 16:28:44 UTC (rev 4081)
@@ -7,6 +7,6 @@
3.2-upstream-stable: needed
2.6.32-upstream-stable: needed
sid: released (4.3.3-3) [bugfix/x86/KVM-x86-Reload-pit-counters-for-all-channels-when-re.patch]
-3.16-jessie-security: pending (3.16.7-ckt20-1+deb8u2) [bugfix/x86/KVM-x86-Reload-pit-counters-for-all-channels-when-re.patch]
-3.2-wheezy-security: pending (3.2.73-2+deb7u2) [bugfix/x86/KVM-x86-Reload-pit-counters-for-all-channels-when-re.patch]
+3.16-jessie-security: released (3.16.7-ckt20-1+deb8u2) [bugfix/x86/KVM-x86-Reload-pit-counters-for-all-channels-when-re.patch]
+3.2-wheezy-security: released (3.2.73-2+deb7u2) [bugfix/x86/KVM-x86-Reload-pit-counters-for-all-channels-when-re.patch]
2.6.32-squeeze-security: ignored "KVM not supported in Squeeze LTS"
Modified: active/CVE-2015-7550
===================================================================
--- active/CVE-2015-7550 2016-01-05 13:50:14 UTC (rev 4080)
+++ active/CVE-2015-7550 2016-01-05 16:28:44 UTC (rev 4081)
@@ -7,6 +7,6 @@
3.2-upstream-stable: needed
2.6.32-upstream-stable: needed
sid: released (4.3.3-3) [bugfix/all/keys-fix-race-between-read-and-revoke.patch]
-3.16-jessie-security: pending (3.16.7-ckt20-1+deb8u2) [bugfix/all/keys-fix-race-between-read-and-revoke.patch]
-3.2-wheezy-security: pending (3.2.73-2+deb7u2) [bugfix/all/keys-fix-race-between-read-and-revoke.patch]
+3.16-jessie-security: released (3.16.7-ckt20-1+deb8u2) [bugfix/all/keys-fix-race-between-read-and-revoke.patch]
+3.2-wheezy-security: released (3.2.73-2+deb7u2) [bugfix/all/keys-fix-race-between-read-and-revoke.patch]
2.6.32-squeeze-security: released (2.6.32-48squeeze18) [bugfix/all/keys-fix-race-between-read-and-revoke.patch]
Modified: active/CVE-2015-8543
===================================================================
--- active/CVE-2015-8543 2016-01-05 13:50:14 UTC (rev 4080)
+++ active/CVE-2015-8543 2016-01-05 16:28:44 UTC (rev 4081)
@@ -13,5 +13,5 @@
2.6.32-upstream-stable: needed
sid: released (4.3.3-1) [bugfix/all/net-add-validation-for-the-socket-syscall-protocol.patch]
3.16-jessie-security: released (3.16.7-ckt20-1+deb8u1) [bugfix/all/net-add-validation-for-the-socket-syscall-protocol.patch]
-3.2-wheezy-security: pending (3.2.73-2+deb7u2) [bugfix/all/net-add-validation-for-the-socket-syscall-protocol.patch]
+3.2-wheezy-security: released (3.2.73-2+deb7u2) [bugfix/all/net-add-validation-for-the-socket-syscall-protocol.patch]
2.6.32-squeeze-security: released (2.6.32-48squeeze18) [bugfix/all/net-add-validation-for-the-socket-syscall-protocol.patch]
Modified: active/CVE-2015-8550
===================================================================
--- active/CVE-2015-8550 2016-01-05 13:50:14 UTC (rev 4080)
+++ active/CVE-2015-8550 2016-01-05 16:28:44 UTC (rev 4081)
@@ -7,6 +7,6 @@
3.2-upstream-stable: needed
2.6.32-upstream-stable: N/A "Vulnerable code not present"
sid: released (4.3.3-3) [bugfix/all/xen-add-ring_copy_request.patch, bugfix/all/xen-netback-don-t-use-last-request-to-determine-mini.patch, bugfix/all/xen-netback-use-ring_copy_request-throughout.patch, bugfix/all/xen-blkback-only-read-request-operation-from-shared-.patch, bugfix/all/xen-blkback-read-from-indirect-descriptors-only-once.patch, bugfix/all/xen-scsiback-safely-copy-requests.patch, bugfix/all/xen-pciback-save-xen_pci_op-commands-before-processi.patch]
-3.16-jessie-security: pending (3.16.7-ckt20-1+deb8u2) [bugfix/all/xen-add-ring_copy_request.patch, bugfix/all/xen-netback-don-t-use-last-request-to-determine-mini.patch, bugfix/all/xen-netback-use-ring_copy_request-throughout.patch, bugfix/all/xen-blkback-only-read-request-operation-from-shared-.patch, bugfix/all/xen-blkback-read-from-indirect-descriptors-only-once.patch, bugfix/all/xen-pciback-save-xen_pci_op-commands-before-processi.patch]
-3.2-wheezy-security: pending (3.2.73-2+deb7u2) [bugfix/all/xen-add-ring_copy_request.patch, bugfix/all/xen-netback-don-t-use-last-request-to-determine-mini.patch, bugfix/all/xen-netback-use-ring_copy_request-throughout.patch, bugfix/all/xen-blkback-only-read-request-operation-from-shared-.patch, bugfix/all/xen-pciback-save-xen_pci_op-commands-before-processi.patch]
+3.16-jessie-security: released (3.16.7-ckt20-1+deb8u2) [bugfix/all/xen-add-ring_copy_request.patch, bugfix/all/xen-netback-don-t-use-last-request-to-determine-mini.patch, bugfix/all/xen-netback-use-ring_copy_request-throughout.patch, bugfix/all/xen-blkback-only-read-request-operation-from-shared-.patch, bugfix/all/xen-blkback-read-from-indirect-descriptors-only-once.patch, bugfix/all/xen-pciback-save-xen_pci_op-commands-before-processi.patch]
+3.2-wheezy-security: released (3.2.73-2+deb7u2) [bugfix/all/xen-add-ring_copy_request.patch, bugfix/all/xen-netback-don-t-use-last-request-to-determine-mini.patch, bugfix/all/xen-netback-use-ring_copy_request-throughout.patch, bugfix/all/xen-blkback-only-read-request-operation-from-shared-.patch, bugfix/all/xen-pciback-save-xen_pci_op-commands-before-processi.patch]
2.6.32-squeeze-security: ignored "Xen not supported in Squeeze LTS"
Modified: active/CVE-2015-8551
===================================================================
--- active/CVE-2015-8551 2016-01-05 13:50:14 UTC (rev 4080)
+++ active/CVE-2015-8551 2016-01-05 16:28:44 UTC (rev 4081)
@@ -7,6 +7,6 @@
3.2-upstream-stable: needed
2.6.32-upstream-stable: N/A "Vulnerable code not present"
sid: released (4.3.3-3) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
-3.16-jessie-security: pending (3.16.7-ckt20-1+deb8u2) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
-3.2-wheezy-security: pending (3.2.73-2+deb7u2) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
+3.16-jessie-security: released (3.16.7-ckt20-1+deb8u2) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
+3.2-wheezy-security: released (3.2.73-2+deb7u2) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
2.6.32-squeeze-security: ignored "Xen not supported in Squeeze LTS"
Modified: active/CVE-2015-8552
===================================================================
--- active/CVE-2015-8552 2016-01-05 13:50:14 UTC (rev 4080)
+++ active/CVE-2015-8552 2016-01-05 16:28:44 UTC (rev 4081)
@@ -7,6 +7,6 @@
3.2-upstream-stable: needed
2.6.32-upstream-stable: N/A "Vulnerable code not present"
sid: released (4.3.3-3) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
-3.16-jessie-security: pending (3.16.7-ckt20-1+deb8u2) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
-3.2-wheezy-security: pending (3.2.73-2+deb7u2) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
+3.16-jessie-security: released (3.16.7-ckt20-1+deb8u2) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
+3.2-wheezy-security: released (3.2.73-2+deb7u2) [bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msi-wh.patch, bugfix/all/xen-pciback-return-error-on-xen_pci_op_enable_msix-w.patch, bugfix/all/xen-pciback-do-not-install-an-irq-handler-for-msi-in.patch, bugfix/all/xen-pciback-for-xen_pci_op_disable_msi-x-only-disabl.patch, bugfix/all/xen-pciback-don-t-allow-msi-x-ops-if-pci_command_mem.patch]
2.6.32-squeeze-security: ignored "Xen not supported in Squeeze LTS"
Modified: active/CVE-2015-8569
===================================================================
--- active/CVE-2015-8569 2016-01-05 13:50:14 UTC (rev 4080)
+++ active/CVE-2015-8569 2016-01-05 16:28:44 UTC (rev 4081)
@@ -9,6 +9,6 @@
3.2-upstream-stable: released (3.2.75) [pptp-verify-sockaddr_len-in-pptp_bind-and-pptp_connect.patch]
2.6.32-upstream-stable: N/A "Vulnerable code not present"
sid: released (4.3.3-3) [bugfix/all/pptp-verify-sockaddr_len-in-pptp_bind-and-pptp_conne.patch]
-3.16-jessie-security: pending (3.16.7-ckt20-1+deb8u2) [bugfix/all/pptp-verify-sockaddr_len-in-pptp_bind-and-pptp_conne.patch]
-3.2-wheezy-security: pending (3.2.73-2+deb7u2) [bugfix/all/pptp-verify-sockaddr_len-in-pptp_bind-and-pptp_conne.patch]
+3.16-jessie-security: released (3.16.7-ckt20-1+deb8u2) [bugfix/all/pptp-verify-sockaddr_len-in-pptp_bind-and-pptp_conne.patch]
+3.2-wheezy-security: released (3.2.73-2+deb7u2) [bugfix/all/pptp-verify-sockaddr_len-in-pptp_bind-and-pptp_conne.patch]
2.6.32-squeeze-security: N/A "Vulnerable code not present"
Modified: active/CVE-2015-8575
===================================================================
--- active/CVE-2015-8575 2016-01-05 13:50:14 UTC (rev 4080)
+++ active/CVE-2015-8575 2016-01-05 16:28:44 UTC (rev 4081)
@@ -7,6 +7,6 @@
3.2-upstream-stable: released (3.2.75) [bluetooth-validate-socket-address-length-in-sco_sock_bind.patch]
2.6.32-upstream-stable: needed
sid: released (4.3.3-3) [bugfix/all/bluetooth-validate-socket-address-length-in-sco_sock.patch]
-3.16-jessie-security: pending (3.16.7-ckt20-1+deb8u2) [bugfix/all/bluetooth-validate-socket-address-length-in-sco_sock.patch]
-3.2-wheezy-security: pending (3.2.73-2+deb7u2) [bugfix/all/bluetooth-validate-socket-address-length-in-sco_sock.patch]
+3.16-jessie-security: released (3.16.7-ckt20-1+deb8u2) [bugfix/all/bluetooth-validate-socket-address-length-in-sco_sock.patch]
+3.2-wheezy-security: released (3.2.73-2+deb7u2) [bugfix/all/bluetooth-validate-socket-address-length-in-sco_sock.patch]
2.6.32-squeeze-security: released (2.6.32-48squeeze18) [bugfix/all/bluetooth-validate-socket-address-length-in-sco_sock.patch]
Modified: active/CVE-2015-8709
===================================================================
--- active/CVE-2015-8709 2016-01-05 13:50:14 UTC (rev 4080)
+++ active/CVE-2015-8709 2016-01-05 16:28:44 UTC (rev 4081)
@@ -10,6 +10,6 @@
3.2-upstream-stable: N/A "Vulnerable code not present"
2.6.32-upstream-stable: N/A "Vulnerable code not present"
sid: released (4.3.3-3) [bugfix/all/ptrace-being-capable-wrt-a-process-requires-mapped-uids-gids.patch]
-3.16-jessie-security: pending (3.16.7-ckt20-1+deb8u2) [bugfix/all/ptrace-being-capable-wrt-a-process-requires-mapped-uids-gids.patch]
+3.16-jessie-security: released (3.16.7-ckt20-1+deb8u2) [bugfix/all/ptrace-being-capable-wrt-a-process-requires-mapped-uids-gids.patch]
3.2-wheezy-security: N/A "Vulnerable code not present"
2.6.32-squeeze-security: N/A "Vulnerable code not present"
More information about the kernel-sec-discuss
mailing list