retire

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@2508 e094ebfe-e918-0410-adfb-c712417f3574
author: Moritz Muehlenhoff <jmm@debian.org> 2011-09-25 18:37:17 +0000
committer: Moritz Muehlenhoff <jmm@debian.org> 2011-09-25 18:37:17 +0000
commit: d172b05014f773cdaae3b0e952d40da5b9aafd3b (patch)
tree: 075178e8def2d100c28cde92edccbfa76cf740f9 /retired
parent: e1dcd648e1d245e413aa9e542194eb5b2850f9b6 (diff)
3 files changed, 30 insertions, 0 deletions
diff --git a/retired/CVE-2011-2484 b/retired/CVE-2011-2484
new file mode 100644
index 00000000..513bb7b4
--- /dev/null
+++ b/retired/CVE-2011-2484
@@ -0,0 +1,10 @@
+Description: taskstats local DoS
+References:
+ http://lists.openwall.net/linux-kernel/2011/06/16/605
+Notes:
+Bugs:
+upstream: released (3.0-rc5) [26c4caea9d697043cc5a458b96411b86d7f6babd]
+2.6.32-upstream-stable: released (2.6.32.43)
+sid: released (2.6.39-3)
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/taskstats-don-t-allow-duplicate-entries-in-listener-mode.patch]
+2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/taskstats-don-t-allow-duplicate-entries-in-listener-mode.patch]
diff --git a/retired/CVE-2011-2495 b/retired/CVE-2011-2495
new file mode 100644
index 00000000..55a3b347
--- /dev/null
+++ b/retired/CVE-2011-2495
@@ -0,0 +1,10 @@
+Description: proc: restrict access to /proc/PID/io
+References:
+ https://patchwork.kernel.org/patch/916032/
+Notes:
+Bugs:
+upstream: released (3.0-rc6) [1d1221f375c94ef961ba8574ac4f85c8870ddd51, 293eb1e7772b25a93647c798c7b89bf26c2da2e0]
+2.6.32-upstream-stable: released (2.6.32.44)
+sid: released (3.0.0-1) 
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/proc-restrict-access-to-proc-pid-io.patch]
+2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/proc-restrict-access-to-proc-pid-io.patch, bugfix/all/proc-fix-a-race-in-do_io_accounting.patch]
diff --git a/retired/CVE-2011-2928 b/retired/CVE-2011-2928
new file mode 100644
index 00000000..caf2c83e
--- /dev/null
+++ b/retired/CVE-2011-2928
@@ -0,0 +1,10 @@
+Description: ZERO_SIZE_PTR dereference for long symlinks in Be FS
+References:
+ http://www.pre-cert.de/advisories/PRE-SA-2011-06.txt
+Notes:
+Bugs:
+upstream: pending (3.1-rc3) [338d0f0a6fbc82407864606f5b64b75aeb3c70f2]
+2.6.32-upstream-stable: released (2.6.32.46)
+sid: released (3.0.0-2)
+2.6.26-lenny-security: released (2.6.26-26lenny4) [bugfix/all/befs-validate-length-of-long-symbolic-links.patch]
+2.6.32-squeeze-security: released (2.6.32-35squeeze1) [bugfix/all/befs-validate-length-of-long-symbolic-links.patch]
author	Moritz Muehlenhoff <jmm@debian.org>	2011-09-25 18:37:17 +0000
committer	Moritz Muehlenhoff <jmm@debian.org>	2011-09-25 18:37:17 +0000
commit	d172b05014f773cdaae3b0e952d40da5b9aafd3b (patch)
tree	075178e8def2d100c28cde92edccbfa76cf740f9 /retired
parent	e1dcd648e1d245e413aa9e542194eb5b2850f9b6 (diff)