retire issues

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@2136 e094ebfe-e918-0410-adfb-c712417f3574
author: Moritz Muehlenhoff <jmm@debian.org> 2011-01-12 19:45:55 +0000
committer: Moritz Muehlenhoff <jmm@debian.org> 2011-01-12 19:45:55 +0000
commit: 66b8a9fb5af82cdb2d7716a18c121846bde265f1 (patch)
tree: b066947ac6f758e4e704a61cd27433529f692186 /retired/CVE-2010-4160
parent: 5c884f446e8442183599431ba0b20c364f71d283 (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/retired/CVE-2010-4160 b/retired/CVE-2010-4160
new file mode 100644
index 00000000..0573be6f
--- /dev/null
+++ b/retired/CVE-2010-4160
@@ -0,0 +1,12 @@
+Candidate: CVE-2010-4160
+Description: L2TP send buffer allocation size overflows
+References:
+Notes:
+ jmm> In earlier kernels the code resides in drivers/net/pppol2tp.c
+ jmm> http://article.gmane.org/gmane.comp.security.oss.general/3775
+Bugs:
+upstream: released (2.6.37-rc1) [253eacc070b114c2ec1f81b067d2fed7305467b0 8acfe468b0384e834a303f08ebc4953d72fb690a]
+2.6.32-upstream-stable: released (2.6.32.27) [3543e68e, f342cb14f]
+linux-2.6: released (2.6.32-27)
+2.6.26-lenny-security: released (2.6.26-26lenny1) [bugfix/all/net-truncate-recvfrom-and-sendto-length-to-INT_MAX.patch, bugfix/all/net-limit-socket-io-iovec-total-length-to-INT_MAX.patch]
+2.6.32-squeeze-security: released (2.6.32-27)
author	Moritz Muehlenhoff <jmm@debian.org>	2011-01-12 19:45:55 +0000
committer	Moritz Muehlenhoff <jmm@debian.org>	2011-01-12 19:45:55 +0000
commit	66b8a9fb5af82cdb2d7716a18c121846bde265f1 (patch)
tree	b066947ac6f758e4e704a61cd27433529f692186 /retired/CVE-2010-4160
parent	5c884f446e8442183599431ba0b20c364f71d283 (diff)