[kernel-sec-discuss] r2654 - dsa-texts
Micah Anderson
micah at alioth.debian.org
Mon Mar 26 15:40:04 UTC 2012
Author: micah
Date: 2012-03-26 15:40:03 +0000 (Mon, 26 Mar 2012)
New Revision: 2654
Modified:
dsa-texts/2.6.32-41squeeze2
Log:
remove CVE-2011-4127 from header, reformat paragraphs
Modified: dsa-texts/2.6.32-41squeeze2
===================================================================
--- dsa-texts/2.6.32-41squeeze2 2012-03-26 04:05:05 UTC (rev 2653)
+++ dsa-texts/2.6.32-41squeeze2 2012-03-26 15:40:03 UTC (rev 2654)
@@ -8,7 +8,7 @@
Vulnerability : privilege escalation/denial of service/information leak
Problem type : local/remote
Debian-specific: no
-CVE Id(s) : CVE-2009-4307 CVE-2011-1833 CVE-2011-4127 CVE-2011-4347
+CVE Id(s) : CVE-2009-4307 CVE-2011-1833 CVE-2011-4347
CVE-2012-0045 CVE-2012-1090 CVE-2012-1097
Several vulnerabilities have been discovered in the Linux kernel that may lead
@@ -29,27 +29,26 @@
CVE-2011-4347
- Sasha Levin reported an issue in the device assignment functionality
- in KVM. Local users with permission to access /dev/kvm could assign
- unused pci devices to a guest and cause a denial of service (crash).
+ Sasha Levin reported an issue in the device assignment functionality in
+ KVM. Local users with permission to access /dev/kvm could assign unused pci
+ devices to a guest and cause a denial of service (crash).
CVE-2012-0045
- Stephan Barwolf reported an issue in KVM. Local users in a 32-bit
- guest running on a 64-bit system can crash the guest with a syscall
- instruction.
+ Stephan Barwolf reported an issue in KVM. Local users in a 32-bit guest
+ running on a 64-bit system can crash the guest with a syscall instruction.
CVE-2012-1090
- CAI Qian reported an issue in the CIFS filesystem. A reference count
- leak can occur during the lookup of special files, resulting in a
- denial of service (oops) on umount.
+ CAI Qian reported an issue in the CIFS filesystem. A reference count leak
+ can occur during the lookup of special files, resulting in a denial of
+ service (oops) on umount.
CVE-2012-1097
- H. Peter Anvin reported an issue in the regset infrastructure. Local
- users can cause a denial of service (NULL pointer dereference) by
- triggering the write methods of readonly regsets.
+ H. Peter Anvin reported an issue in the regset infrastructure. Local users
+ can cause a denial of service (NULL pointer dereference) by triggering the
+ write methods of readonly regsets.
For the stable distribution (squeeze), this problem has been fixed in version
2.6.32-41squeeze2.
More information about the kernel-sec-discuss
mailing list