[kernel] r5102 - patch-tracking
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Tue Dec 27 23:42:15 UTC 2005
Author: jmm-guest
Date: Tue Dec 27 23:42:14 2005
New Revision: 5102
Added:
patch-tracking/CVE-2003-0418
patch-tracking/CVE-2003-0464
patch-tracking/CVE-2003-0467
Log:
the remaining issues from 2003
Added: patch-tracking/CVE-2003-0418
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2003-0418 Tue Dec 27 23:42:14 2005
@@ -0,0 +1,22 @@
+Candidate: CVE-2003-0418
+References:
+ http://marc.theaimsgroup.com/?l=bugtraq&m=105519179005065&w=2
+ http://www.cartel-securite.fr/pbiondi/adv/CARTSA-20030314-icmpleak.txt
+ http://www.kb.cert.org/vuls/id/471084
+Description:
+ The Linux 2.0 kernel IP stack does not properly calculate the size of an ICMP
+ citation, which causes it to include portions of unauthorized memory in ICMP
+ error responses.
+Notes:
+Bugs:
+upstream:
+linux-2.6: N/A
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.8: N/A
+2.4.19-woody-security: N/A
+2.4.18-woody-security: N/A
+2.4.17-woody-security: N/A
+2.4.16-woody-security: N/A
+2.4.17-woody-security-hppa: N/A
+2.4.17-woody-security-ia64: N/A
Added: patch-tracking/CVE-2003-0464
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2003-0464 Tue Dec 27 23:42:14 2005
@@ -0,0 +1,21 @@
+Candidate: CVE-2003-0464
+References:
+ http://www.redhat.com/support/errata/RHSA-2003-238.html
+ http://oval.mitre.org/oval/definitions/data/oval311.html
+Description:
+ The RPC code in Linux kernel 2.4 sets the reuse flag when sockets are created,
+ which could allow local users to bind to UDP ports that are used by privileged
+ services such as nfsd.
+Notes:
+Bugs:
+upstream:
+linux-2.6:
+2.6.8-sarge-security:
+2.4.27-sarge-security:
+2.6.8:
+2.4.19-woody-security:
+2.4.18-woody-security:
+2.4.17-woody-security:
+2.4.16-woody-security:
+2.4.17-woody-security-hppa:
+2.4.17-woody-security-ia64:
Added: patch-tracking/CVE-2003-0467
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2003-0467 Tue Dec 27 23:42:14 2005
@@ -0,0 +1,22 @@
+Candidate: CVE-2003-0467
+References:
+ http://marc.theaimsgroup.com/?l=bugtraq&m=105985703724758&w=2
+Description:
+ Unknown vulnerability in ip_nat_sack_adjust of Netfilter in Linux kernels
+ 2.4.20, and some 2.5.x, when CONFIG_IP_NF_NAT_FTP or CONFIG_IP_NF_NAT_IRC is
+ enabled, or the ip_nat_ftp or ip_nat_irc modules are loaded, allows remote
+ attackers to cause a denial of service (crash) in systems using NAT, possibly
+ due to an integer signedness error.
+Notes:
+Bugs:
+upstream:
+linux-2.6:
+2.6.8-sarge-security:
+2.4.27-sarge-security:
+2.6.8:
+2.4.19-woody-security:
+2.4.18-woody-security:
+2.4.17-woody-security:
+2.4.16-woody-security:
+2.4.17-woody-security-hppa:
+2.4.17-woody-security-ia64:
More information about the Kernel-svn-changes
mailing list