[Secure-testing-commits] r726 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Sat, 02 Apr 2005 13:10:15 +0000
Author: jmm-guest
Date: 2005-04-02 13:10:12 +0000 (Sat, 02 Apr 2005)
New Revision: 726
Modified:
sarge-checks/CAN/list
Log:
bluetooth bug#, filed bug for 2005-0749 wrt kernel 2.4
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-04-02 12:57:42 UTC (rev 725)
+++ sarge-checks/CAN/list 2005-04-02 13:10:12 UTC (rev 726)
@@ -531,14 +531,12 @@
NOTE: reserved
CAN-2005-0750 [Linux kernel af_bluetooth range check flaw; possibly local root]
NOTE: reserved
- - kernel-source-2.4.27 (unfixed; bug# pending)
+ - kernel-source-2.4.27 (unfixed; bug# 302704)
- kernel-source-2.6.8 2.6.8-16
-CAN-2005-0749
+CAN-2005-0749 [Linux kernel DoS vulnerability in elf_load_library()]
NOTE: reserved
- NOTE: according to ubuntu, this is a DOS:
- NOTE: "A specially crafted ELF library or executable could cause an
- NOTE: attempt to free an invalid pointer, which lead to a kernel crash."
- TOOD: see USN-103-1 for info on this kernel hole; get patch from ubuntu
+ TODO: File similar bug for 2.6.8
+ - kernel-source-2.4.27 (unfixed; bug# pending)
CAN-2003-1131 (PHP remote code injection vulnerability in index.php in ...)
NOTE: not-for-us (ActiveCampaign KnowledgeBuilder)
CAN-2002-1601 (The Connectables feature in Adobe PhotoDeluxe 3.1 prepends the Adobe ...)