retire more issues

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1537 e094ebfe-e918-0410-adfb-c712417f3574
author: Moritz Muehlenhoff <jmm@debian.org> 2009-10-21 17:15:58 +0000
committer: Moritz Muehlenhoff <jmm@debian.org> 2009-10-21 17:15:58 +0000
commit: 94b78328a2fbd9c6566e544cc49464671d42001a (patch)
tree: 1b92684f7d56a06a268e5881709078c6ec581cc9 /retired/CVE-2009-2407
parent: b249e20c89e173fff61e474dd649059d739c7180 (diff)
1 files changed, 19 insertions, 0 deletions
diff --git a/retired/CVE-2009-2407 b/retired/CVE-2009-2407
new file mode 100644
index 00000000..04b06f85
--- /dev/null
+++ b/retired/CVE-2009-2407
@@ -0,0 +1,19 @@
+Candidate: CVE-2009-2407
+Description:
+ Ramon de Carvalho Valle discovered that eCryptfs did not correctly
+ validate certain buffer sizes.  A local attacker could create specially
+ crafted eCryptfs files to crash the system or gain elevated privileges.
+References:
+ http://www.ubuntu.com/usn/usn-807-1
+Ubuntu-Description:
+Notes:
+Bugs:
+upstream: released (2.6.31-rc5) [f151cd2c54ddc7714e2f740681350476cda03a28]
+linux-2.6: released (2.6.30-5) [bugfix/all/ecryptfs-parse_tag_3_packet-check-tag-3-package-encrypted-key-size.patch]
+2.6.18-etch-security: N/A "no ecryptfs"
+2.6.24-etch-security: released (2.6.24-6~etchnhalf.8etch2) [bugfix/all/ecryptfs-parse_tag_3_packet-check-tag-3-package-encrypted-key-size.patch]
+2.6.26-lenny-security: released (2.6.26-17lenny1) [bugfix/all/ecryptfs-parse_tag_3_packet-check-tag-3-package-encrypted-key-size.patch]
+2.6.15-dapper-security:
+2.6.22-gutsy-security:
+2.6.24-hardy-security:
+2.6.27-intrepid-security:
author	Moritz Muehlenhoff <jmm@debian.org>	2009-10-21 17:15:58 +0000
committer	Moritz Muehlenhoff <jmm@debian.org>	2009-10-21 17:15:58 +0000
commit	94b78328a2fbd9c6566e544cc49464671d42001a (patch)
tree	1b92684f7d56a06a268e5881709078c6ec581cc9 /retired/CVE-2009-2407
parent	b249e20c89e173fff61e474dd649059d739c7180 (diff)