new issues

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1914 e094ebfe-e918-0410-adfb-c712417f3574

2 files changed, 26 insertions, 0 deletions

diff --git a/active/CVE-2010-net-sched-infoleak b/active/CVE-2010-net-sched-infoleak
new file mode 100644
index 00000000..70ec8c20
--- /dev/null
+++ b/active/CVE-2010-net-sched-infoleak
@@ -0,0 +1,12 @@
+Candidate: needed
+Description:
+ 32-bits of kernel memory are leaked to user land via tc dump
+References:
+ http://www.openwall.com/lists/oss-security/2010/08/18/1
+Notes:
+Bugs:
+upstream: needed
+2.6.32-upstream-stable: needed
+linux-2.6: needed
+2.6.26-lenny-security: needed
+2.6.32-squeeze-security: needed
diff --git a/active/CVE-2010-xfs-infoleak b/active/CVE-2010-xfs-infoleak
new file mode 100644
index 00000000..12cbb42f
--- /dev/null
+++ b/active/CVE-2010-xfs-infoleak
@@ -0,0 +1,14 @@
+Candidate: needed
+Description:
+ xfs leak due to filehandle conversion issue
+References:
+ http://www.openwall.com/lists/oss-security/2010/08/18/2
+Notes:
+ also need regression fix (not commited yet):
+ http://oss.sgi.com/archives/xfs/2010-08/msg00179.html
+Bugs:
+upstream: release (2.6.35) [7dce11db,7124fe0a,1920779e,7b6259e7]
+2.6.32-upstream-stable: needed
+linux-2.6: needed
+2.6.26-lenny-security: needed
+2.6.32-squeeze-security: needed