various updates/info

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1800 e094ebfe-e918-0410-adfb-c712417f3574
author: Raphael Geissert <geissert@debian.org> 2010-03-31 03:54:04 +0000
committer: Raphael Geissert <geissert@debian.org> 2010-03-31 03:54:04 +0000
commit: 1fa508ff3070d08385b77118de2176df81056177 (patch)
tree: 2008fc83eda4398078f5b4601af011e47fa09fc3 /retired
parent: 5f607b0384aa271bdafb82d50963656d4999e884 (diff)
3 files changed, 38 insertions, 0 deletions
diff --git a/retired/CVE-2010-futex-dos b/retired/CVE-2010-futex-dos
new file mode 100644
index 000000000..9353953af
--- /dev/null
+++ b/retired/CVE-2010-futex-dos
@@ -0,0 +1,11 @@
+Candidate: needs to be requested
+Description:
+ denial-of-service in kernel/futex.c
+References:
+Notes:
+Bugs:
+upstream: released (2.6.33-rc5) [7485d0d3]
+2.6.32-upstream-stable: released (2.6.32.5) [d4c893f2]
+linux-2.6: released (2.6.32-6) [bugfix/all/stable/2.6.32.5]
+2.6.26-lenny-security: N/A "vulnerable code not present"
+2.6.32-squeeze-security: released (2.6.32-6) [bugfix/all/stable/2.6.32.5]
diff --git a/retired/CVE-2010-kvm-null-ptr-dereference b/retired/CVE-2010-kvm-null-ptr-dereference
new file mode 100644
index 000000000..12378d879
--- /dev/null
+++ b/retired/CVE-2010-kvm-null-ptr-dereference
@@ -0,0 +1,14 @@
+Candidate: needs to be requested
+Description:
+ kvm null ptr dereference
+References:
+ http://patchwork.kernel.org/patch/61310/
+Notes:
+Bugs:
+upstream: released (2.6.33-rc1) [e50212bb]
+2.6.32-upstream-stable: released (2.6.32.10) [454f8b167]
+linux-2.6: released (2.6.32-10) [bugfix/all/stable/2.6.32.10.patch]
+2.6.18-etch-security: N/A "kvm introduced in 2.6.25"
+2.6.24-etch-security: N/A "kvm introduced in 2.6.25"
+2.6.26-lenny-security: N/A "vulnerable code not yet present"
+2.6.32-squeeze-security: released (2.6.32-10) [bugfix/all/stable/2.6.32.10.patch]
diff --git a/retired/CVE-2010-sparc-needs-execute-bit-check b/retired/CVE-2010-sparc-needs-execute-bit-check
new file mode 100644
index 000000000..6f9dd2858
--- /dev/null
+++ b/retired/CVE-2010-sparc-needs-execute-bit-check
@@ -0,0 +1,13 @@
+Candidate:
+Description:
+ Execution possible in non-executable mappings on sparc in recent 2.6 kernels 
+References:
+ http://marc.info/?l=linux-sparc&m=126662196902830&w=2
+ http://marc.info/?l=linux-sparc&m=126662159602378&w=2
+Notes:
+Bugs:
+upstream: released (2.6.33) [1f474646]
+2.6.32-upstream-stable: released (2.6.32.10) [26e272a3c]
+linux-2.6: released (2.6.32-10) [bugfix/all/stable/2.6.32.10.patch]
+2.6.26-lenny-security: N/A "vulnerable code not yet present"
+2.6.32-squeeze-security: released (2.6.32-10) [bugfix/all/stable/2.6.32.10.patch]
author	Raphael Geissert <geissert@debian.org>	2010-03-31 03:54:04 +0000
committer	Raphael Geissert <geissert@debian.org>	2010-03-31 03:54:04 +0000
commit	1fa508ff3070d08385b77118de2176df81056177 (patch)
tree	2008fc83eda4398078f5b4601af011e47fa09fc3 /retired
parent	5f607b0384aa271bdafb82d50963656d4999e884 (diff)