diff options
author | Moritz Muehlenhoff <jmm@debian.org> | 2011-08-09 14:02:42 +0000 |
---|---|---|
committer | Moritz Muehlenhoff <jmm@debian.org> | 2011-08-09 14:02:42 +0000 |
commit | 7901f4353f100fcb03d95c2da88e55cd41be2bae (patch) | |
tree | 70f2418a66ee14c679795110329e056f6b83c0e1 /retired | |
parent | 24910f9251ca6f1b20496b8904134c2a44b299e1 (diff) |
retire issues
git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@2427 e094ebfe-e918-0410-adfb-c712417f3574
Diffstat (limited to 'retired')
-rw-r--r-- | retired/CVE-2011-1585 | 10 | ||||
-rw-r--r-- | retired/CVE-2011-1767 | 10 | ||||
-rw-r--r-- | retired/CVE-2011-1768 | 10 |
3 files changed, 30 insertions, 0 deletions
diff --git a/retired/CVE-2011-1585 b/retired/CVE-2011-1585 new file mode 100644 index 00000000..33c6fab8 --- /dev/null +++ b/retired/CVE-2011-1585 @@ -0,0 +1,10 @@ +Candidate: CVE-2011-1585 +Description: cifs session reuse +References: +Notes: +Bugs: +upstream: released (2.6.36) [4ff67b720c02c36e54d55b88c2931879b7db1cd2, fc87a40677bbe0937e2ff0642c7e83c9a4813f3d, 24e6cf92fde1f140d8eb0bf7cd24c2c78149b6b2] +2.6.32-upstream-stable: released (2.6.32.44) +sid: released (2.6.37-1) +2.6.26-lenny-security: ignored "requires porting, an exploitation requires the ability to run mount.cifs w/ root privs" +2.6.32-squeeze-security: released (2.6.32-34squeeze1) [bugfix/all/cifs-clean-up-cifs_find_smb_ses.patch, bugfix/all/cifs-fix-NULL-pointer-dereference-in-cifs_find_smb_ses.patch, bugfix/all/cifs-check-for-NULL-session-password.patch] diff --git a/retired/CVE-2011-1767 b/retired/CVE-2011-1767 new file mode 100644 index 00000000..416c20ca --- /dev/null +++ b/retired/CVE-2011-1767 @@ -0,0 +1,10 @@ +Candidate: CVE-2011-1767 +Description: remote oops if ip_gre is compiled as module and packet comes at unfortunate moment of module loading +References: +Notes: +Bugs: +upstream: released (2.6.34) [c2892f02712e9516d72841d5c019ed6916329794] +2.6.32-upstream-stable: released (2.6.32.44) +sid: released (2.6.34-1) +2.6.26-lenny-security: released (2.6.26-26lenny3) [bugfix/all/gre-fix-netns-vs-proto-registration-ordering.patch] +2.6.32-squeeze-security: released (2.6.32-34squeeze1) [bugfix/all/gre-fix-netns-vs-proto-registration-ordering.patch] diff --git a/retired/CVE-2011-1768 b/retired/CVE-2011-1768 new file mode 100644 index 00000000..8bd34943 --- /dev/null +++ b/retired/CVE-2011-1768 @@ -0,0 +1,10 @@ +Candidate: CVE-2011-1768 +Description: receive hook can be called before netns setup is done, oopsing in net_generic() +References: +Notes: +Bugs: +upstream: released (2.6.34) [d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978] +2.6.32-upstream-stable: released (2.6.32.44) +sid: released (2.6.34-1) +2.6.26-lenny-security: released (2.6.26-26lenny3) [bugfix/all/xfrm6_tunnel-join-error-paths-using-goto.patch, bugfix/all/xfrm6_tunnel-join-error-paths-using-goto.patch, bugfix/all/tunnels-fix-netns-vs-proto-registration-ordering.patch] +2.6.32-squeeze-security: released (2.6.32-35) [bugfix/all/xfrm6_tunnel-join-error-paths-using-goto.patch, bugfix/all/tunnels-fix-netns-vs-proto-registration-ordering.patch] |