[kernel] r5068 - patch-tracking

Moritz Muehlenhoff jmm-guest at costa.debian.org
Wed Dec 21 21:36:26 UTC 2005 

Author: jmm-guest
Date: Wed Dec 21 21:36:25 2005
New Revision: 5068

Added:
   patch-tracking/CVE-2005-0090
   patch-tracking/CVE-2005-0091
   patch-tracking/CVE-2005-0092
Log:
Three Red Hat specific vulnerabilities not affecting Debian.


Added: patch-tracking/CVE-2005-0090
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2005-0090	Wed Dec 21 21:36:25 2005
@@ -0,0 +1,23 @@
+Candidate: CVE-2005-0090
+References: 
+ A regression error in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split
+ patch omits an "access check," which allows local users to cause a denial
+ of service (crash).
+Description:
+ http://www.redhat.com/support/errata/RHSA-2005-092.html
+ http://www.securityfocus.com/bid/12599
+ http://xforce.iss.net/xforce/xfdb/20618
+Notes:
+ Red Hat specific vulnerability
+Bugs: 
+upstream: 
+linux-2.6: N/A
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.8: N/A
+2.4.19-woody-security: N/A
+2.4.18-woody-security: N/A
+2.4.17-woody-security: N/A
+2.4.16-woody-security: N/A
+2.4.17-woody-security-hppa: N/A
+2.4.17-woody-security-ia64: N/A

Added: patch-tracking/CVE-2005-0091
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2005-0091	Wed Dec 21 21:36:25 2005
@@ -0,0 +1,23 @@
+Candidate: CVE-2005-0091
+References: 
+ http://www.redhat.com/support/errata/RHSA-2005-092.html
+ http://www.securityfocus.com/bid/12599
+ http://xforce.iss.net/xforce/xfdb/20619
+Description: 
+ Unknown vulnerability in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split
+ patch, when using the hugemem kernel, allows local users to read and write to
+ arbitrary kernel memory and gain privileges via certain syscalls.
+Notes:
+ Red Hat specific. 
+Bugs: 
+upstream: N/A
+linux-2.6: N/A
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.8: N/A
+2.4.19-woody-security: N/A
+2.4.18-woody-security: N/A
+2.4.17-woody-security: N/A
+2.4.16-woody-security: N/A
+2.4.17-woody-security-hppa: N/A
+2.4.17-woody-security-ia64: N/A

Added: patch-tracking/CVE-2005-0092
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2005-0092	Wed Dec 21 21:36:25 2005
@@ -0,0 +1,23 @@
+Candidate: CVE-2005-0092
+References: 
+ http://www.redhat.com/support/errata/RHSA-2005-092.html
+ http://www.securityfocus.com/bid/12599
+ http://xforce.iss.net/xforce/xfdb/20620
+Description: 
+ Unknown vulnerability in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split
+ patch, when running on x86 with the hugemem kernel, allows local users to
+ cause a denial of service (crash).
+Notes:
+ Red Hat specific. 
+Bugs: 
+upstream: N/A
+linux-2.6: N/A
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.8: N/A
+2.4.19-woody-security: N/A
+2.4.18-woody-security: N/A
+2.4.17-woody-security: N/A
+2.4.16-woody-security: N/A
+2.4.17-woody-security-hppa: N/A
+2.4.17-woody-security-ia64: N/A

More information about the Kernel-svn-changes mailing list