retire all issues that have been fixed upstream and in all listed kernels that are affected

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@600 e094ebfe-e918-0410-adfb-c712417f3574
author: dann frazier <dannf@debian.org> 2006-09-26 05:25:01 +0000
committer: dann frazier <dannf@debian.org> 2006-09-26 05:25:01 +0000
commit: b5dff88447542aeaeb052e46ac5a81f56b13b47b (patch)
tree: f208d9fb748aff5b1a6082182f77bd7a1bb2df9b /retired/CVE-2004-2660
parent: 708584120cba90a6f017432e2ee45d9c5c1859dc (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2004-2660 b/retired/CVE-2004-2660
new file mode 100644
index 00000000..9ca89856
--- /dev/null
+++ b/retired/CVE-2004-2660
@@ -0,0 +1,16 @@
+Candidate: CVE-2004-2660
+References: 
+ CONFIRM:http://linux.bkbits.net:8080/linux-2.6/cset@4182a613oVsK0-8eCWpyYFrUf8rhLA
+ CONFIRM:http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.10 
+Description: 
+ Memory leak in direct-io.c in Linux kernel 2.6.x before 2.6.10 allows local
+ users to cause a denial of service (memory consumption) via certain O_DIRECT
+ (direct IO) write requests.
+Notes: 
+ jmm> This was only covered by MITRE in May 2006
+ jmm> Vulnerable code not present in 2.4
+Bugs: 
+upstream: released (2.6.10)
+linux-2.6: N/A
+2.6.8-sarge-security: released (2.6.8-16sarge5) [direct-io-write-mem-leak.dpatch]
+2.4.27-sarge-security: N/A
author	dann frazier <dannf@debian.org>	2006-09-26 05:25:01 +0000
committer	dann frazier <dannf@debian.org>	2006-09-26 05:25:01 +0000
commit	b5dff88447542aeaeb052e46ac5a81f56b13b47b (patch)
tree	f208d9fb748aff5b1a6082182f77bd7a1bb2df9b /retired/CVE-2004-2660
parent	708584120cba90a6f017432e2ee45d9c5c1859dc (diff)