retire issues

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@2730 e094ebfe-e918-0410-adfb-c712417f3574
author: Moritz Muehlenhoff <jmm@debian.org> 2012-07-31 10:18:27 +0000
committer: Moritz Muehlenhoff <jmm@debian.org> 2012-07-31 10:18:27 +0000
commit: 807f271399ded69163670297620a1927125673da (patch)
tree: 26db2498f74f72bb48cdc92ea9defd1f5b080fbe /retired
parent: 0883bdc05f0d17dcc53eca6c829c961e7bd49307 (diff)
2 files changed, 20 insertions, 0 deletions
diff --git a/retired/CVE-2012-2137 b/retired/CVE-2012-2137
new file mode 100644
index 00000000..8a6d91fb
--- /dev/null
+++ b/retired/CVE-2012-2137
@@ -0,0 +1,10 @@
+Description: kvm: buffer overflow in kvm_set_irq()
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-2137
+Notes:
+Bugs:
+upstream: released (3.5-rc2) [f2ebd422f71cda9c791f76f85d2ca102ae34a1ed]
+2.6.32-upstream-stable: N/A "code introduced in 2.6.33"
+sid: released (3.2.20-1)
+2.6.32-squeeze-security: N/A "code introduced in 2.6.33"
+3.2-upstream-stable: released (3.2.24)
diff --git a/retired/CVE-2012-3375 b/retired/CVE-2012-3375
new file mode 100644
index 00000000..581197ee
--- /dev/null
+++ b/retired/CVE-2012-3375
@@ -0,0 +1,10 @@
+Description: epoll: can leak file descriptors when returning  -ELOOP
+References:
+Notes:
+ jmm> Introduced in 3.3, but change was backported to 3.2.9
+Bugs:
+upstream: released (3.4) [13d518074a952d33d47c428419693f63389547e9]
+2.6.32-upstream-stable: N/A "Vulnerable code not present"
+sid: released (3.2.23-1)
+2.6.32-squeeze-security: N/A "Vulnerable code not present"
+3.2-upstream-stable: released (3.2.24)
author	Moritz Muehlenhoff <jmm@debian.org>	2012-07-31 10:18:27 +0000
committer	Moritz Muehlenhoff <jmm@debian.org>	2012-07-31 10:18:27 +0000
commit	807f271399ded69163670297620a1927125673da (patch)
tree	26db2498f74f72bb48cdc92ea9defd1f5b080fbe /retired
parent	0883bdc05f0d17dcc53eca6c829c961e7bd49307 (diff)