retire one more issue

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1079 e094ebfe-e918-0410-adfb-c712417f3574
author: Moritz Muehlenhoff <jmm@debian.org> 2007-12-29 15:19:04 +0000
committer: Moritz Muehlenhoff <jmm@debian.org> 2007-12-29 15:19:04 +0000
commit: 5fe1f0b941838f0d81492991d4b45fe03513456c (patch)
tree: 2be1198396436880a58036dbc07d544ae42d1cd5 /retired/CVE-2007-3380
parent: 9e076945a3428f577ff90b146251022408d8122d (diff)
1 files changed, 21 insertions, 0 deletions
diff --git a/retired/CVE-2007-3380 b/retired/CVE-2007-3380
new file mode 100644
index 00000000..eb84636a
--- /dev/null
+++ b/retired/CVE-2007-3380
@@ -0,0 +1,21 @@
+Candidate: CVE-2007-3380
+References: 
+ https://www.redhat.com/archives/cluster-devel/2007-June/msg00213.html
+Description: 
+Ubuntu-Description: 
+ A flaw was discovered in the cluster manager.  A remote attacker could
+ connect to the DLM port and block further DLM operations.
+Notes: 
+ dannf> Debian's 2.6.18 isn't affected, but the redhat-cluster package
+        may be.
+ jmm> redhat-cluster doesn't appear affected neither, TCP connection code
+      not present. Fixed in git on 2007-07-09, marking 2.6.23 as fixed
+Bugs: 
+upstream: released (2.6.23)
+linux-2.6: released (2.6.23-1)
+2.6.18-etch-security: N/A
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.15-dapper-security: released (2.6.15-28.57)
+2.6.17-edgy-security: N/A
+2.6.20-feisty-security: N/A
author	Moritz Muehlenhoff <jmm@debian.org>	2007-12-29 15:19:04 +0000
committer	Moritz Muehlenhoff <jmm@debian.org>	2007-12-29 15:19:04 +0000
commit	5fe1f0b941838f0d81492991d4b45fe03513456c (patch)
tree	2be1198396436880a58036dbc07d544ae42d1cd5 /retired/CVE-2007-3380
parent	9e076945a3428f577ff90b146251022408d8122d (diff)