retire two issues

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1137 e094ebfe-e918-0410-adfb-c712417f3574
author: Moritz Muehlenhoff <jmm@debian.org> 2008-02-19 18:15:48 +0000
committer: Moritz Muehlenhoff <jmm@debian.org> 2008-02-19 18:15:48 +0000
commit: b3c85c1c684b279c0648bda02f94ccafb65c2373 (patch)
tree: 864b9019f3c2610a888afef096dd422be27b631f /retired/CVE-2007-0997
parent: c43451ed898c6484dbacae6e76f0cf25ed6a1a6f (diff)
1 files changed, 23 insertions, 0 deletions
diff --git a/retired/CVE-2007-0997 b/retired/CVE-2007-0997
new file mode 100644
index 00000000..56121819
--- /dev/null
+++ b/retired/CVE-2007-0997
@@ -0,0 +1,23 @@
+Candidate: CVE-2007-0997
+References: 
+ http://lkml.org/lkml/2006/7/17/140
+ http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.18
+Description: 
+ Race condition in the tee (sys_tee) system call in the Linux kernel 2.6.17 through
+ 2.6.17.6 might allow local users to cause a denial of service (system crash), obtain
+ sensitive information (kernel memory contents), or gain privileges via unspecified
+ vectors related to a potentially dropped ipipe lock during a race between two pipe
+ readers.
+Ubuntu-Description: 
+Notes: 
+ jmm> commit aadd06e5c56b9ff5117ec77e59eada43dc46e2fc
+Bugs: 
+upstream: released (2.6.18), release (2.6.17.7)
+linux-2.6: released (2.6.18-1)
+2.6.18-etch-security: N/A
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A "no sys_tee in 2.4"
+2.6.15-dapper-security: N/A
+2.6.17-edgy-security: N/A
+2.6.20-feisty-security: N/A
+2.6.22-gutsy-security: N/A
author	Moritz Muehlenhoff <jmm@debian.org>	2008-02-19 18:15:48 +0000
committer	Moritz Muehlenhoff <jmm@debian.org>	2008-02-19 18:15:48 +0000
commit	b3c85c1c684b279c0648bda02f94ccafb65c2373 (patch)
tree	864b9019f3c2610a888afef096dd422be27b631f /retired/CVE-2007-0997
parent	c43451ed898c6484dbacae6e76f0cf25ed6a1a6f (diff)