updates

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@2175 e094ebfe-e918-0410-adfb-c712417f3574

5 files changed, 17 insertions, 19 deletions

diff --git a/active/CVE-2010-3865 b/active/CVE-2010-3865
index 87f9774ae..51d0a1b08 100644
--- a/active/CVE-2010-3865
+++ b/active/CVE-2010-3865
@@ -11,7 +11,7 @@ Notes:
  bwh> Auto-loading will be disabled in 2.6.32-28.
 Bugs:
 upstream: released (2.6.37-rc1) [1b1f693d7ad6d193862dcb1118540a030c5e761f]
-2.6.32-upstream-stable: pending (2.6.32-31)
-linux-2.6:
+2.6.32-upstream-stable: 
+linux-2.6: pending (2.6.32-31)
 2.6.26-lenny-security: N/A (Vulnerable code not present)
 2.6.32-squeeze-security: pending (2.6.32-31)
diff --git a/active/CVE-2010-4075 b/active/CVE-2010-4075
index 961f8bf12..1f20fe265 100644
--- a/active/CVE-2010-4075
+++ b/active/CVE-2010-4075
@@ -2,10 +2,10 @@ Candidate: CVE-2010-4075
 Description: stack leak in drivers/serial/serial_core.c
 References:
 Notes:
- jmm> d281da7ff6f70efca0553c288bb883e8605b3862
 Bugs:
-upstream: needed
+upstream: released (2.6.37) [d281da7ff6f70efca0553c288bb883e8605b3862]
 2.6.32-upstream-stable: needed
-linux-2.6: needed
+linux-2.6: pending (2.6.32-31)
 2.6.26-lenny-security: needed "ABI breaker"
-2.6.32-squeeze-security: needed
+2.6.32-squeeze-security: pending (2.6.32-31)
+
diff --git a/active/CVE-2010-4076 b/active/CVE-2010-4076
index 994f8dbfd..1a91c1514 100644
--- a/active/CVE-2010-4076
+++ b/active/CVE-2010-4076
@@ -2,10 +2,9 @@ Candidate: CVE-2010-4076
 Description: stack leak in drivers/char/amiserial.c
 References:
 Notes:
- jmm> 0587102cf9f427c185bfdeb2cef41e13ee0264b1 (along with d281da7ff6f70efca0553c288bb883e8605b3862)
 Bugs:
-upstream: needed 
+upstream: released (2.6.37) [0587102cf9f427c185bfdeb2cef41e13ee0264b1 ,d281da7ff6f70efca0553c288bb883e8605b3862]
 2.6.32-upstream-stable: needed
-linux-2.6: needed
-2.6.26-lenny-security: needed "no upstream fix as of 2010.11.10"
-2.6.32-squeeze-security: needed
+linux-2.6: pending (2.6.32-31)
+2.6.26-lenny-security: needed "ABI breaker"
+2.6.32-squeeze-security: pending (2.6.32-31)
diff --git a/active/CVE-2010-4077 b/active/CVE-2010-4077
index 2b5fd158d..278c62c60 100644
--- a/active/CVE-2010-4077
+++ b/active/CVE-2010-4077
@@ -2,10 +2,10 @@ Candidate: CVE-2010-4077
 Description: stack leak in drivers/char/nozomi.c
 References:
 Notes:
- jmm> 0587102cf9f427c185bfdeb2cef41e13ee0264b1 (along with d281da7ff6f70efca0553c288bb883e8605b3862)
+ jmm> 
 Bugs:
-upstream: needed 
+upstream: released (2.6.37) [0587102cf9f427c185bfdeb2cef41e13ee0264b1 , d281da7ff6f70efca0553c288bb883e8605b3862]
 2.6.32-upstream-stable: needed
-linux-2.6: needed
-2.6.26-lenny-security: needed "no upstream fix as of 2010.11.10"
-2.6.32-squeeze-security: needed
+linux-2.6: pending (2.6.32-31)
+2.6.26-lenny-security: needed "ABI breaker"
+2.6.32-squeeze-security: pending (2.6.32-31)
diff --git a/active/CVE-2011-0521 b/active/CVE-2011-0521
index 6a6958afe..e62d074aa 100644
--- a/active/CVE-2011-0521
+++ b/active/CVE-2011-0521
@@ -3,11 +3,10 @@ Description:
  av7110 negative array offset
 References:
  http://www.openwall.com/lists/oss-security/2011/01/24/2
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=cb26a24ee9706473f31d34cc259f4dcf45cd0644
 Notes:
 Bugs:
-upstream:
-2.6.32-upstream-stable:
+upstream: released (2.6.38-rc2) [cb26a24ee9706473f31d34cc259f4dcf45cd0644]
+2.6.32-upstream-stable: needed "submitted for 2.6.32.x on 2011-01-28"
 linux-2.6: pending (2.6.32-31) [bugfix/all/av7110-check-for-negative-array-offset.patch]
 2.6.26-lenny-security: pending (2.6.26-26lenny2) [bugfix/all/av7110-check-for-negative-array-offset.patch]
 2.6.32-squeeze-security: pending (2.6.32-31) [bugfix/all/av7110-check-for-negative-array-offset.patch]