From f3581ec9b2d48c6103c22fecb46f713217d834e8 Mon Sep 17 00:00:00 2001 From: dann frazier Date: Thu, 17 Aug 2006 00:24:25 +0000 Subject: move retired to the top level hierarchy so people can easily checkout just the active issues git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@548 e094ebfe-e918-0410-adfb-c712417f3574 --- retired/CVE-2005-2099 | 32 ++++++++++++++++++++++++++++++++ 1 file changed, 32 insertions(+) create mode 100644 retired/CVE-2005-2099 (limited to 'retired/CVE-2005-2099') diff --git a/retired/CVE-2005-2099 b/retired/CVE-2005-2099 new file mode 100644 index 00000000..15e33c8a --- /dev/null +++ b/retired/CVE-2005-2099 @@ -0,0 +1,32 @@ +Candidate: CVE-2005-2099 +References: + URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2099 + Final-Decision: + Interim-Decision: + Modified: + Proposed: + Assigned: 20050630 + Category: SF + CONFIRM:http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.12.5 + UBUNTU:USN-169-1 + URL:http://www.ubuntulinux.org/support/documentation/usn/usn-169-1 + SECUNIA:16355 + URL:http://secunia.com/advisories/16355/ +Description: + The Linux kernel before 2.6.12.5 does not properly destroy a keyring + that is not instantiated properly, which allows local users or remote + attackers to cause a denial of service (kernel oops) via a keyring + with a payload that is not empty, which causes the creation to fail, + leading toa null dereference in the keyring destructor. +upstream: released (2.6.12.5) +2.6.8-sarge-security: N/A +2.4.27-sid/sarge: N/A +2.4.27-sarge-security: N/A +linux-2.6: released (2.6.12-3) [linux-2.6.12.5.patch] +2.4.19-woody-security: +2.4.18-woody-security: +2.4.17-woody-security: +2.4.16-woody-security: +2.4.17-woody-security-hppa: +2.4.17-woody-security-ia64: +2.4.18-woody-security-hppa: -- cgit v1.2.3