retire all issues that have been fixed upstream and in all listed kernels that are affected

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@600 e094ebfe-e918-0410-adfb-c712417f3574

1 files changed, 24 insertions, 0 deletions

diff --git a/retired/CVE-2006-2934 b/retired/CVE-2006-2934
new file mode 100644
index 00000000..16adb8df
--- /dev/null
+++ b/retired/CVE-2006-2934
@@ -0,0 +1,24 @@
+Candidate: CVE-2006-2934
+References:
+ http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=dd7271feba61d5dc0fab1cb5365db9926d35ea3a
+Description: 
+ SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux kernel
+ 2.6.17 before 2.6.17.3 and 2.6.16 before 2.6.16.23 allows remote attackers to
+ cause a denial of service (crash) via a packet without any chunks, which
+ causes a variable to contain an invalid value that is later used to
+ dereference a pointer.
+Ubuntu-Description:
+ A Denial of service vulnerability was reported in iptables' SCTP
+ conntrack module. On computers which use this iptables module, a
+ remote attacker could expoit this to trigger a kernel crash.
+Notes: 
+ netfilter/sctp didn't exist in 2.6.8/2.4.27
+Bugs: 
+upstream: released (2.6.16.23, 2.6.17.3)
+linux-2.6: released (2.6.17-3)
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.10-hoary-security: released (2.6.10-34.23)
+2.6.12-breezy-security: released (2.6.12-10.37)	
+2.6.15-dapper-security: released (2.6.15-26.46)
+2.6.17-edgy: released