[Secure-testing-commits] r436 - sarge-checks/CAN
Micah Anderson
micah@costa.debian.org
Fri, 18 Feb 2005 00:35:16 +0100
Author: micah
Date: 2005-02-18 00:35:13 +0100 (Fri, 18 Feb 2005)
New Revision: 436
Modified:
sarge-checks/CAN/list
Log:
resolved 1337 kernel issue (another fix!)
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-02-17 23:31:13 UTC (rev 435)
+++ sarge-checks/CAN/list 2005-02-17 23:35:13 UTC (rev 436)
@@ -1373,10 +1373,11 @@
CAN-2004-1338 (The triggers in Oracle 9i and 10g allow local users to gain privileges ...)
NOTE: not-for-us (oracle)
CAN-2004-1337 (The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 ...)
- NOTE: <dilinger> joeyh: we're mostly not vulnerable, because the module is generally loaded from the initrd (or very early on at some point)
NOTE: <joshk> i thought we had it <joshk> but i think there's a reason we don't <joshk> and i need to ask dilinger about it
- NOTE: micah is waiting for joshk to get back to him on this
- NOTE: apparently it only affects 2.6
+ TODO: 2.6.9 fixed? waiting on joshk
+ - kernel-source-2.6.8 2.6.8-14
+ - kernel-source-2.6.9 2.6.9-6
+ - kernel-source-2.6.10 2.6.10-1
CAN-2004-1336 (The xdvizilla script in tetex-bin 2.0.2 creates temporary files with ...)
- tetex-bin 2.0.2-25
CAN-2004-1335 (Memory leak in the ip_options_get function in the Linux kernel before ...)