Debian updates; retire several issues

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1197 e094ebfe-e918-0410-adfb-c712417f3574
author: dann frazier <dannf@debian.org> 2008-07-20 21:58:00 +0000
committer: dann frazier <dannf@debian.org> 2008-07-20 21:58:00 +0000
commit: cffb363c568e15bb95549d0c5746068cca9c94bf (patch)
tree: e0434734275d36074875867c87f80245c22cc450 /retired/CVE-2008-0600
parent: 5573dc627c8198493da4d51a700922f187269fb9 (diff)
1 files changed, 22 insertions, 0 deletions
diff --git a/retired/CVE-2008-0600 b/retired/CVE-2008-0600
new file mode 100644
index 00000000..23a12e99
--- /dev/null
+++ b/retired/CVE-2008-0600
@@ -0,0 +1,22 @@
+Candidate: CVE-2008-0600
+Description: 
+ The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1
+ does not validate a certain userspace pointer before dereference, which
+ allows local users to gain root privileges via crafted arguments in
+ a vmsplice system call, a different vulnerability than CVE-2008-0009
+ and CVE-2008-0010.
+References: 
+Ubuntu-Description: 
+Notes: 
+Bugs: 
+upstream: released (2.6.24.2)
+linux-2.6: released (2.6.24-4)
+2.6.18-etch-security: released (2.6.18.dfsg.1-18etch1)
+2.6.24-etchnhalf-security: released (2.6.24-4) [bugfix/all/stable/2.6.24.2.patch]
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.15-dapper-security: N/A
+2.6.17-edgy-security: released (2.6.17.1-12.44)
+2.6.20-feisty-security: released (2.6.20-16.35)
+2.6.22-gutsy-security: released (2.6.22-14.52)
+2.6.24-hardy-security: N/A
author	dann frazier <dannf@debian.org>	2008-07-20 21:58:00 +0000
committer	dann frazier <dannf@debian.org>	2008-07-20 21:58:00 +0000
commit	cffb363c568e15bb95549d0c5746068cca9c94bf (patch)
tree	e0434734275d36074875867c87f80245c22cc450 /retired/CVE-2008-0600
parent	5573dc627c8198493da4d51a700922f187269fb9 (diff)