[kernel] r5506 - patch-tracking
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Wed Jan 18 09:23:47 UTC 2006
Author: jmm-guest
Date: Wed Jan 18 09:23:46 2006
New Revision: 5506
Added:
patch-tracking/CVE-2005-4639
Modified:
patch-tracking/CVE-2005-3356
patch-tracking/CVE-2005-4605
patch-tracking/CVE-2005-4618
patch-tracking/CVE-2006-0095
Log:
new issue
add some credits to add them to the DSA text
Modified: patch-tracking/CVE-2005-3356
==============================================================================
--- patch-tracking/CVE-2005-3356 (original)
+++ patch-tracking/CVE-2005-3356 Wed Jan 18 09:23:46 2006
@@ -20,6 +20,7 @@
Signed-off-by: Al Viro <aviro at redhat.com>
Signed-off-by: Linus Torvalds <torvalds at osdl.org>
Notes:
+ jmm> Discovered by Doug Chapman
Bugs:
upstream: pending (2.6.15.2)
linux-2.6:
Modified: patch-tracking/CVE-2005-4605
==============================================================================
--- patch-tracking/CVE-2005-4605 (original)
+++ patch-tracking/CVE-2005-4605 Wed Jan 18 09:23:46 2006
@@ -11,6 +11,7 @@
Notes:
jmm> 2.4 not affected as proc_file_lseek() contains a check for this
jmm> if (offset>=0 && (unsigned long long)offset<=file->f_dentry->d_inode->i_sb->s_maxbytes) {
+ jmm> Discovered by Karl Janmar
Bugs:
upstream: released (2.6.15), released (2.6.14.6)
linux-2.6: released (2.6.15-1)
Modified: patch-tracking/CVE-2005-4618
==============================================================================
--- patch-tracking/CVE-2005-4618 (original)
+++ patch-tracking/CVE-2005-4618 Wed Jan 18 09:23:46 2006
@@ -7,10 +7,11 @@
local users to cause a denial of service and possibly execute arbitrary
code via a long string, which causes sysctl to write a zero byte outside
the buffer.
-Notes:
+Notes:
+ jmm> Discovered by Yi Ying
Bugs:
-upstream:
-linux-2.6:
+upstream: released (2.6.15)
+linux-2.6: released (2.6.15-1)
2.6.8-sarge-security: pending (2.6.8-16sarge2)
2.4.27-sarge-security: pending (2.4.27-10sarge2)
2.4.27:
Added: patch-tracking/CVE-2005-4639
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2005-4639 Wed Jan 18 09:23:46 2006
@@ -0,0 +1,25 @@
+Candidate: CVE-2005-4639
+References:
+ CONFIRM:http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15
+ URL:http://www.securityfocus.com/bid/16142
+ URL:http://www.frsirt.com/english/advisories/2006/0035
+ URL:http://secunia.com/advisories/18216
+Description:
+ Buffer overflow in the CA-driver (dst_ca.c) for TwinHan DST Frontend/
+ Card in Linux kernel 2.6.12 and other versions before 2.6.15 allows
+ local users to cause a denial of service (crash) and possibly execute
+ arbitrary code by "reading more than 8 bytes into an 8 byte long array".
+Notes:
+ jmm> Discovered by Perceval Anichini
+Bugs:
+upstream:
+linux-2.6:
+2.6.8-sarge-security:
+2.4.27-sarge-security:
+2.4.27:
+2.4.19-woody-security:
+2.4.18-woody-security:
+2.4.17-woody-security:
+2.4.16-woody-security:
+2.4.17-woody-security-hppa:
+2.4.17-woody-security-ia64:
Modified: patch-tracking/CVE-2006-0095
==============================================================================
--- patch-tracking/CVE-2006-0095 (original)
+++ patch-tracking/CVE-2006-0095 Wed Jan 18 09:23:46 2006
@@ -8,6 +8,7 @@
2.6.15 fixes it.
Notes:
jhorms> 2.4 not affected as dm-crypt doesn't seem to exist
+ jmm> Discovered by Stefan Rompf
Bugs:
upstream: needed
linux-2.6: needed
More information about the Kernel-svn-changes
mailing list