[kernel-sec-discuss] r2109 - active
Dann Frazier
dannf at alioth.debian.org
Mon Jan 3 04:39:15 UTC 2011
Author: dannf
Date: 2011-01-03 04:38:58 +0000 (Mon, 03 Jan 2011)
New Revision: 2109
Modified:
active/CVE-2010-0435
active/CVE-2010-1436
active/CVE-2010-4243
Log:
status updates
Modified: active/CVE-2010-0435
===================================================================
--- active/CVE-2010-0435 2010-12-29 21:18:45 UTC (rev 2108)
+++ active/CVE-2010-0435 2011-01-03 04:38:58 UTC (rev 2109)
@@ -11,5 +11,5 @@
upstream: released (2.6.34)
2.6.32-upstream-stable: released (2.6.32.27)
linux-2.6: released (2.6.32-29) [bugfix/all/stable/2.6.32.27.patch]
-2.6.26-lenny-security:
+2.6.26-lenny-security: pending (2.6.26-26lenny2) [bugfix/x86/kvm-vmx-fix-vmx-null-pointer-dereference-on-debug-register-access.patch]
2.6.32-squeeze-security: released (2.6.32-29) [bugfix/all/stable/2.6.32.27.patch]
Modified: active/CVE-2010-1436
===================================================================
--- active/CVE-2010-1436 2010-12-29 21:18:45 UTC (rev 2108)
+++ active/CVE-2010-1436 2011-01-03 04:38:58 UTC (rev 2109)
@@ -7,5 +7,5 @@
upstream: released (2.6.35-rc1) [7e619bc3e]
2.6.32-upstream-stable: needed
linux-2.6: released (2.6.32-25) [bugfix/all/gfs2-clean-up-gfs_adjust_quota-and_do_glock.patch, bugfix/all/gfs2-fix-writing-to-non-page-aligned-gfs2_quota-structures.patch]
-2.6.26-lenny-security: needed
+2.6.26-lenny-security: needed "needs port"
2.6.32-squeeze-security: released (2.6.32-25) [bugfix/all/gfs2-clean-up-gfs_adjust_quota-and_do_glock.patch, bugfix/all/gfs2-fix-writing-to-non-page-aligned-gfs2_quota-structures.patch]
Modified: active/CVE-2010-4243
===================================================================
--- active/CVE-2010-4243 2010-12-29 21:18:45 UTC (rev 2108)
+++ active/CVE-2010-4243 2011-01-03 04:38:58 UTC (rev 2109)
@@ -11,8 +11,8 @@
> explosion of memory isn't accounted for by any task so it won't be
> terminated by the OOM killer."
Bugs:
-upstream:
-2.6.32-upstream-stable:
-linux-2.6:
-2.6.26-lenny-security:
-2.6.32-squeeze-security:
+upstream: released (2.6.37-rc5) [3c77f84]
+2.6.32-upstream-stable: needed "Not yet queueed for 2.6.32.y, but it is queued for 2.6.35.y and the same fix applies to both"
+linux-2.6: pending (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]
+2.6.26-lenny-security: needed
+2.6.32-squeeze-security: pending (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]
More information about the kernel-sec-discuss
mailing list