[kernel-sec-discuss] r2109 - active

Dann Frazier dannf at alioth.debian.org
Mon Jan 3 04:39:15 UTC 2011


Author: dannf
Date: 2011-01-03 04:38:58 +0000 (Mon, 03 Jan 2011)
New Revision: 2109

Modified:
   active/CVE-2010-0435
   active/CVE-2010-1436
   active/CVE-2010-4243
Log:
status updates

Modified: active/CVE-2010-0435
===================================================================
--- active/CVE-2010-0435	2010-12-29 21:18:45 UTC (rev 2108)
+++ active/CVE-2010-0435	2011-01-03 04:38:58 UTC (rev 2109)
@@ -11,5 +11,5 @@
 upstream: released (2.6.34)
 2.6.32-upstream-stable: released (2.6.32.27)
 linux-2.6: released (2.6.32-29) [bugfix/all/stable/2.6.32.27.patch]
-2.6.26-lenny-security:
+2.6.26-lenny-security: pending (2.6.26-26lenny2) [bugfix/x86/kvm-vmx-fix-vmx-null-pointer-dereference-on-debug-register-access.patch]
 2.6.32-squeeze-security: released (2.6.32-29) [bugfix/all/stable/2.6.32.27.patch]

Modified: active/CVE-2010-1436
===================================================================
--- active/CVE-2010-1436	2010-12-29 21:18:45 UTC (rev 2108)
+++ active/CVE-2010-1436	2011-01-03 04:38:58 UTC (rev 2109)
@@ -7,5 +7,5 @@
 upstream: released (2.6.35-rc1) [7e619bc3e]
 2.6.32-upstream-stable: needed
 linux-2.6: released (2.6.32-25) [bugfix/all/gfs2-clean-up-gfs_adjust_quota-and_do_glock.patch, bugfix/all/gfs2-fix-writing-to-non-page-aligned-gfs2_quota-structures.patch]
-2.6.26-lenny-security: needed
+2.6.26-lenny-security: needed "needs port"
 2.6.32-squeeze-security: released (2.6.32-25) [bugfix/all/gfs2-clean-up-gfs_adjust_quota-and_do_glock.patch, bugfix/all/gfs2-fix-writing-to-non-page-aligned-gfs2_quota-structures.patch]

Modified: active/CVE-2010-4243
===================================================================
--- active/CVE-2010-4243	2010-12-29 21:18:45 UTC (rev 2108)
+++ active/CVE-2010-4243	2011-01-03 04:38:58 UTC (rev 2109)
@@ -11,8 +11,8 @@
  > explosion of memory isn't accounted for by any task so it won't be
  > terminated by the OOM killer."
 Bugs:
-upstream:
-2.6.32-upstream-stable:
-linux-2.6:
-2.6.26-lenny-security:
-2.6.32-squeeze-security:
+upstream: released (2.6.37-rc5) [3c77f84]
+2.6.32-upstream-stable: needed "Not yet queueed for 2.6.32.y, but it is queued for 2.6.35.y and the same fix applies to both"
+linux-2.6: pending (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]
+2.6.26-lenny-security: needed
+2.6.32-squeeze-security: pending (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]




More information about the kernel-sec-discuss mailing list