diff options
| author | Moritz Muehlenhoff <jmm@debian.org> | 2014-04-16 16:07:38 +0000 |
|---|---|---|
| committer | Moritz Muehlenhoff <jmm@debian.org> | 2014-04-16 16:07:38 +0000 |
| commit | f6a453ba0ca101605c1b35d53653dd63b3e799df (patch) | |
| tree | 2bc1a01887871a88b3a09fb2a908220fddbfdfcf /dsa-texts/2.6.32-48squeeze5 | |
| parent | b40caddb35ed7e9ae35cb2e20b7f4c2f434f43a9 (diff) | |
some update
git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@3320 e094ebfe-e918-0410-adfb-c712417f3574
Diffstat (limited to 'dsa-texts/2.6.32-48squeeze5')
| -rw-r--r-- | dsa-texts/2.6.32-48squeeze5 | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/dsa-texts/2.6.32-48squeeze5 b/dsa-texts/2.6.32-48squeeze5 index e6b62ddf..84294c63 100644 --- a/dsa-texts/2.6.32-48squeeze5 +++ b/dsa-texts/2.6.32-48squeeze5 @@ -35,11 +35,36 @@ CVE-2013-2147 allowing users to gain access to sensitive kernel memory. CVE-2013-2889 + + Kees Cook discovered that missing input sanitising in the HID + driver for Zeroplus game pads could lead to local denial of service. + CVE-2013-2893 + + Kees Cook discovered that missing input sanitising in the HID + driver for various Logitech force feedback devices could lead to local + denial of service. + CVE-2013-2929 + + Vasily Kulikov discovered that a flaw in the get_dumpable() function of + the ptrace subsytsem could lead to information disclosure. + 'fs.suid_dumpable' needs to be set to 2. + CVE-2013-4162 + + Hannes Frederic Sowa discovered that incorrect handling of IPv6 sockets + using the UDP_CORK option could result in denial of service. + CVE-2013-4299 + + A bug in the device mapper can lead to information disclosure. + CVE-2013-4345 + + Stephan Mueller found in bug in the ANSI pseudo random number generator + which could lead to the use of less entropy than expected. + CVE-2013-4511 CVE-2013-4512 CVE-2013-4587 |