[Secure-testing-commits] r259 - sarge-checks/CAN

Joey Hess joeyh@costa.debian.org
Mon, 10 Jan 2005 20:10:10 +0100 

Author: joeyh
Date: 2005-01-10 20:10:08 +0100 (Mon, 10 Jan 2005)
New Revision: 259

Modified:
   sarge-checks/CAN/list
Log:
updates from kernel changelogs


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-01-09 19:56:04 UTC (rev 258)
+++ sarge-checks/CAN/list	2005-01-10 19:10:08 UTC (rev 259)
@@ -284,8 +284,8 @@
 CAN-2004-1235
 	NOTE: reserved
 	- kernel-source-2.6.8 2.6.9-5
-	NOTE: and binary packages built from it
-	- kernel-source-2.4.27 (unfixed; bug #289202)
+	- kernel-source-2.4.27 2.4.27-8
+	NOTE: and binary packages built from them
 CAN-2004-1234 (load_elf_binary in Linux before 2.4.26 allows local users to cause a ...)
 	TODO: check with kernel team
 CAN-2004-1233 (Integer overflow in Gadu-Gadu allows remote attackers to cause a ...)
@@ -627,7 +627,7 @@
 CAN-2004-1075 (Cross-site scripting (XSS) vulnerability in standard_error_message.dtml ...)
 	- zope-zwiki (unfixed; bug #282944)
 CAN-2004-1074 (The binfmt functionality in the Linux kernel, when "memory overcommit" ...)
-	- kernel-source-2.6.8 2.6.8-9
+	- kernel-source-2.6.8 2.6.8-11
 	- kernel-source-2.4.27 2.4.27-7
 CAN-2004-1073 (The open_exec function in the execve functionality (exec.c) in Linux ...)
 	NOTE: fixed in 2.6.8 and 2.4.27
@@ -638,11 +638,13 @@
 CAN-2004-1070 (The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to ...)
 	NOTE: fixed in 2.6.8 and 2.4.27
 CAN-2004-1069 (Race condition in SELinux 2.6.x through 2.6.9 allows local users to ...)
-	NOTE: fixed in kernel team svn, 2.6 only issue
-	TODO: make sure it gets to testing, add release version
+	NOTE: 2.6 only issue
+	- kernel-source-2.6.8 2.6.8-11
+	NOTE: and the binaries built from it
 CAN-2004-1068 (A "missing serialization" error in the unix_dgram_recvmsg function in ...)
-	TODO: make sure it gets to testing, and the kernel-images built from it
 	- kernel-source-2.4.27 2.4.27-7
+	- kernel-source-2.6.8 2.6.8-11
+	NOTE: and the binary packages built from them
 CAN-2004-1067 (Off-by-one error in the mysasl_canon_user function in Cyrus IMAP ...)
 	NOTE: verified cyrus21-imapd 2.1.17-3 is not vulnerable, seems
 	NOTE: to only affect 2.2 series.
@@ -670,7 +672,9 @@
 CAN-2004-1057
 	NOTE: reserved
 CAN-2004-1056 (Direct Rendering Manager (DRM) driver in Linux kernel 2.6 does not ...)
-	TODO: check with kernel team
+	- kernel-source-2.4.27 2.4.27-8
+	- kernel-source-2.6.8 2.6.8-11
+	NOTE: and the binaries built from them
 CAN-2004-1055 (Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin ...)
 	- phpmyadmin 2:2.6.0-pl3-1
 CAN-2004-1054 (Untrusted execution path vulnerability in invscout in IBM AIX 5.1.0, ...)