[kernel-sec-discuss] r2134 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Jan 12 19:31:41 UTC 2011
Author: jmm
Date: 2011-01-12 19:31:36 +0000 (Wed, 12 Jan 2011)
New Revision: 2134
Modified:
active/CVE-2010-2653
active/CVE-2010-3875
active/CVE-2010-3876
active/CVE-2010-3877
active/CVE-2010-3880
active/CVE-2010-4243
active/CVE-2010-4249
active/CVE-2010-4342
active/CVE-2010-4343
active/CVE-2010-4346
active/CVE-2010-4526
active/CVE-2010-4529
active/CVE-2010-4648
active/CVE-2010-4649
active/CVE-2010-4650
Log:
2.6.32-30 and 2.6.32.28 have been released
Modified: active/CVE-2010-2653
===================================================================
--- active/CVE-2010-2653 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-2653 2011-01-12 19:31:36 UTC (rev 2134)
@@ -9,7 +9,7 @@
jmm> Submitted for 2.6.32.x stable, repinged 2010-12-12.
Bugs:
upstream: released (2.6.34-rc2) [e74d098c]
-2.6.32-upstream-stable: pending (2.6.32.28)
+2.6.32-upstream-stable: released (2.6.32.28)
linux-2.6: released (2.6.32-25) [bugfix/all/hvc_console-fix-race-between-hvc_close-and-hvc_remove.patch, bugfix/all/hvc_console-fix-race-between-hvc_close-and-hvc_remove-2.patch]
2.6.26-lenny-security: "needs port"
2.6.32-squeeze-security: released (2.6.32-25) [bugfix/all/hvc_console-fix-race-between-hvc_close-and-hvc_remove.patch, bugfix/all/hvc_console-fix-race-between-hvc_close-and-hvc_remove-2.patch]
Modified: active/CVE-2010-3875
===================================================================
--- active/CVE-2010-3875 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-3875 2011-01-12 19:31:36 UTC (rev 2134)
@@ -6,6 +6,6 @@
Bugs:
upstream: released (2.6.37-rc2) [fe10ae5]
2.6.32-upstream-stable: needed "dannf poked davem about sending to stable on 2010.11.20"
-linux-2.6: pending (2.6.32-30)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/net-ax25-fix-information-leak-to-userland.patch]
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-3876
===================================================================
--- active/CVE-2010-3876 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-3876 2011-01-12 19:31:36 UTC (rev 2134)
@@ -6,6 +6,6 @@
Bugs:
upstream: released (2.6.37-rc2) [6728664]
2.6.32-upstream-stable: needed "dannf poked davem about it on 2010.11.20"
-linux-2.6: pending (2.6.32-30)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/net-packet-fix-information-leak-to-userland.patch]
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-3877
===================================================================
--- active/CVE-2010-3877 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-3877 2011-01-12 19:31:36 UTC (rev 2134)
@@ -6,6 +6,6 @@
Bugs:
upstream: released (2.6.37-rc2) [88f8a5e3e7defccd3925cabb1ee4d3994e5cdb52]
2.6.32-upstream-stable: needed
-linux-2.6: pending (2.6.32-30)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/net-tipc-fix-information-leak-to-userland.patch]
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-3880
===================================================================
--- active/CVE-2010-3880 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-3880 2011-01-12 19:31:36 UTC (rev 2134)
@@ -7,6 +7,6 @@
Bugs:
upstream: released (2.6.37-rc2) [22e76c8]
2.6.32-upstream-stable: needed
-linux-2.6: pending (2.6.32-30)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/inet_diag-make-sure-we-actually-run-the-same-bytecode-we-audited.patch]
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-4243
===================================================================
--- active/CVE-2010-4243 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4243 2011-01-12 19:31:36 UTC (rev 2134)
@@ -13,6 +13,6 @@
Bugs:
upstream: released (2.6.37-rc5) [3c77f84]
2.6.32-upstream-stable: needed "Not yet queueed for 2.6.32.y, but it is queued for 2.6.35.y and the same fix applies to both"
-linux-2.6: pending (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]
+linux-2.6: released (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]
2.6.26-lenny-security: needed
-2.6.32-squeeze-security: pending (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]
+2.6.32-squeeze-security: released (2.6.32-30) [bugfix/all/exec-make-argv-envp-memory-visible-to-oom-killer.patch, bugfix/all/exec-copy-and-paste-the-fixes-into-compat_do_execve-paths.patch]
Modified: active/CVE-2010-4249
===================================================================
--- active/CVE-2010-4249 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4249 2011-01-12 19:31:36 UTC (rev 2134)
@@ -30,6 +30,6 @@
Bugs:
upstream:
2.6.32-upstream-stable:
-linux-2.6: pending (2.6.30-30) [bugfix/all/af_unix-limit-unix_tot_inflight.patch, bugfix/all/scm-lower-SCM_MAX_FD.patch]
+linux-2.6: released (2.6.30-30) [bugfix/all/af_unix-limit-unix_tot_inflight.patch, bugfix/all/scm-lower-SCM_MAX_FD.patch]
2.6.26-lenny-security:
-2.6.32-squeeze-security: pending (2.6.30-30) [bugfix/all/af_unix-limit-unix_tot_inflight.patch, bugfix/all/scm-lower-SCM_MAX_FD.patch]
+2.6.32-squeeze-security: released (2.6.30-30) [bugfix/all/af_unix-limit-unix_tot_inflight.patch, bugfix/all/scm-lower-SCM_MAX_FD.patch]
Modified: active/CVE-2010-4342
===================================================================
--- active/CVE-2010-4342 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4342 2011-01-12 19:31:36 UTC (rev 2134)
@@ -7,6 +7,6 @@
Bugs:
upstream: released (2.6.37) [4e085e76cbe558b79b54cbab772f61185879bc64]
2.6.32-upstream-stable: needed
-linux-2.6: pending (2.6.32-30)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: needed
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-4343
===================================================================
--- active/CVE-2010-4343 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4343 2011-01-12 19:31:36 UTC (rev 2134)
@@ -4,7 +4,7 @@
Notes:
Bugs:
upstream: released (2.6.35) [7873ca4e4401f0ecd8868bf1543113467e6bae61]
-2.6.32-upstream-stable: pending (2.6.32.28)
-linux-2.6: pending (2.6.32-30)
+2.6.32-upstream-stable: released (2.6.32.28)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: N/A "Brocade driver introduced in 2.6.32"
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-4346
===================================================================
--- active/CVE-2010-4346 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4346 2011-01-12 19:31:36 UTC (rev 2134)
@@ -6,7 +6,7 @@
Notes:
Bugs:
upstream: released (2.6.37) [462e635e5b73ba9a4c03913b77138cd57ce4b050]
-2.6.32-upstream-stable: pending (2.6.32.28)
-linux-2.6: pending (2.6.32-30)
+2.6.32-upstream-stable: released (2.6.32.28)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security:
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-4526
===================================================================
--- active/CVE-2010-4526 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4526 2011-01-12 19:31:36 UTC (rev 2134)
@@ -4,7 +4,7 @@
Notes:
Bugs:
upstream: released (2.6.34) [50b5d6ad63821cea324a5a7a19854d4de1a0a819]
-2.6.32-upstream-stable: pending (2.6.32.28)
-linux-2.6: pending (2.6.32-30)
+2.6.32-upstream-stable: released (2.6.32.28)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: needed
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-4529
===================================================================
--- active/CVE-2010-4529 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4529 2011-01-12 19:31:36 UTC (rev 2134)
@@ -6,6 +6,6 @@
Bugs:
upstream: released (2.6.37) [fdac1e0697356ac212259f2147aa60c72e334861]
2.6.32-upstream-stable: needed "davem has it queued for stable"
-linux-2.6: pending (2.6.32-30) [bugfix/all/irda-prevent-integer-underflow-in-IRLMP_ENUMDEVICES.patch]
+linux-2.6: released (2.6.32-30) [bugfix/all/irda-prevent-integer-underflow-in-IRLMP_ENUMDEVICES.patch]
2.6.26-lenny-security:
-2.6.32-squeeze-security: pending (2.6.32-30) [bugfix/all/irda-prevent-integer-underflow-in-IRLMP_ENUMDEVICES.patch]
+2.6.32-squeeze-security: released (2.6.32-30) [bugfix/all/irda-prevent-integer-underflow-in-IRLMP_ENUMDEVICES.patch]
Modified: active/CVE-2010-4648
===================================================================
--- active/CVE-2010-4648 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4648 2011-01-12 19:31:36 UTC (rev 2134)
@@ -4,7 +4,7 @@
Notes:
Bugs:
upstream: released (2.6.37) [0a54917c3fc295cb61f3fb52373c173fd3b69f48]
-2.6.32-upstream-stable: pending (2.6.32.28)
-linux-2.6: pending (2.6.32-30)
+2.6.32-upstream-stable: released (2.6.32.28)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: N/A "Introduced in 2.6.29"
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-4649
===================================================================
--- active/CVE-2010-4649 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4649 2011-01-12 19:31:36 UTC (rev 2134)
@@ -4,7 +4,7 @@
Notes:
Bugs:
upstream: released (2.6.37) [7182afea8d1afd432a17c18162cc3fd441d0da93]
-2.6.32-upstream-stable: pending (2.6.32.28)
-linux-2.6: pending (2.6.32-30)
+2.6.32-upstream-stable: released (2.6.32.28)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: needed
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
Modified: active/CVE-2010-4650
===================================================================
--- active/CVE-2010-4650 2011-01-11 20:44:54 UTC (rev 2133)
+++ active/CVE-2010-4650 2011-01-12 19:31:36 UTC (rev 2134)
@@ -4,7 +4,7 @@
Notes:
Bugs:
upstream: released (2.6.37) [7572777eef78ebdee1ecb7c258c0ef94d35bad16]
-2.6.32-upstream-stable: pending (2.6.32.28)
-linux-2.6: pending (2.6.32-30)
+2.6.32-upstream-stable: released (2.6.32.28)
+linux-2.6: released (2.6.32-30)
2.6.26-lenny-security: N/A "Introduced in 2.6.29)
-2.6.32-squeeze-security: pending (2.6.32-30)
+2.6.32-squeeze-security: released (2.6.32-30)
More information about the kernel-sec-discuss
mailing list