let's try this again; missed a cve and typo'd the subject of the mail

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1059 e094ebfe-e918-0410-adfb-c712417f3574

1 files changed, 10 insertions, 4 deletions

diff --git a/dsa-texts/2.6.18.dfsg.1-13etch5 b/dsa-texts/2.6.18.dfsg.1-13etch5
index 138605e8..2bcf7e4a 100644
--- a/dsa-texts/2.6.18.dfsg.1-13etch5
+++ b/dsa-texts/2.6.18.dfsg.1-13etch5
@@ -1,14 +1,14 @@
 --------------------------------------------------------------------------
-Debian Security Advisory DSA 1428-1                    security@debian.org
+Debian Security Advisory DSA 1428-2                    security@debian.org
 http://www.debian.org/security/                               dann frazier
-December 10th, 2007                     http://www.debian.org/security/faq
+December 11th, 2007                     http://www.debian.org/security/faq
 --------------------------------------------------------------------------
 
 Package        : linux-2.6
 Vulnerability  : several
 Problem-Type   : local/remote
 Debian-specific: no
-CVE ID         : CVE-2007-3104 CVE-2007-4997 CVE-2007-5500
+CVE ID         : CVE-2007-3104 CVE-2007-4997 CVE-2007-5500 CVE-2007-5904
 
 Several local and remote vulnerabilities have been discovered in the Linux
 kernel that may lead to a denial of service or the execution of arbitrary
@@ -35,7 +35,13 @@ CVE-2007-5500
     Scott James Remnant diagnosed a coding error in the implementation of
     ptrace which could be used by a local user to cause the kernel to enter
     an infinite loop.
-    
+
+CVE-2007-5904
+
+    Przemyslaw Wegrzyn discovered an issue in the CIFS filesystem that could
+    allow a malicious server to cause a denial of service (crash) by overflowing
+    a buffer.
+
 These problems have been fixed in the stable distribution in version 
 2.6.18.dfsg.1-13etch5.