[Secure-testing-commits] r625 - sarge-checks/CAN
Dominic Hargreaves
dom-guest@costa.debian.org
Wed, 23 Mar 2005 13:50:44 +0100
Author: dom-guest
Date: 2005-03-23 13:50:41 +0100 (Wed, 23 Mar 2005)
New Revision: 625
Modified:
sarge-checks/CAN/list
Log:
add kernel-image-2.6.8-i386 2.6.8-15 lines
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-03-23 10:04:45 UTC (rev 624)
+++ sarge-checks/CAN/list 2005-03-23 12:50:41 UTC (rev 625)
@@ -109,6 +109,7 @@
NOTE: not-for-us (GoodTech Telnet Server)
CAN-2005-0767 (Race condition in the Radeon DRI driver for Linux kernel 2.6.8.1 ...)
- kernel-source-2.6.8 2.6.8-15
+ - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0766 (Unknown vulnerability in the sFlow dissector in Ethereal 0.9.14 ...)
- ethereal 0.10.10-1
CAN-2005-0765 (Unknown vulnerability in the JXTA dissector in Ethereal 0.10.9 allows ...)
@@ -210,6 +211,7 @@
TODO: check with kernel team (what about 2.4.27?)
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0735 (newsscript.pl for NewsScript allows remote attachers to gain ...)
NOTE: not-for-us (newsscript)
CAN-2005-0734 (PY Software Active Webcam WebServer (webcam.exe) 5.5 allows remote ...)
@@ -891,20 +893,24 @@
CAN-2005-0532 (The reiserfs_copy_from_user_to_file_region function in reiserfs/file.c ...)
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
NOTE: 2.4.27 seems to be unaffected
CAN-2005-0531 (The atm_get_addr function in addr.c for Linux kernel 2.6.10 and 2.6.11 ...)
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.4.27 (unfixed; bug #296905)
NOTE: affects 2.6 and 2.4
CAN-2005-0530 (Signedness error in the copy_from_read_buf function in n_tty.c for ...)
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.4.27 (unfixed; bug #296906)
NOTE: affects 2.6 and 2.4
CAN-2005-0529 (Linux kernel 2.6.10 and 2.6.11rc1-bk6 uses different size types for ...)
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
NOTE: 2.4.27 seems to be unaffected
CAN-2005-0528
NOTE: reserved
@@ -1650,6 +1656,7 @@
{DSA-693-1}
CAN-2005-0384 (Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 ...)
- kernel-source-2.6.8 2.6.8-15
+ - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.4.27 (pending; fixed in debian-kernel SVN)
CAN-2004-1488 (wget 1.8.x and 1.9.x does not filter or quote control characters when ...)
NOTE: Submitted patch not acceptable according to Andreas Barth
@@ -2298,6 +2305,7 @@
NOTE: 2.6.11 is not affected, apparantly 2.6.10 is no longer relevant
NOTE: was bug#300838
- kernel-source-2.6.8 2.6.8-15
+ - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.4.27 2.4.27-9
CAN-2005-0209 (Netfilter in Linux kernel 2.6.8.1 allows remote attackers to cause a ...)
NOTE: <horms> all kernels seem to be clear with regards to 2005-0209
@@ -2310,6 +2318,7 @@
NOTE: fixed in upstream 2.6.10, 2.6.9 is dead
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0206 (The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 ...)
- tetex-bin (unfixed; bug #300182)
TODO: check other packages
@@ -2326,6 +2335,7 @@
- kernel-source-2.6.8 2.6.8-14
- kernel-source-2.6.11 2.6.11-1
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0203
NOTE: reserved
CAN-2005-0202 (Directory traversal vulnerability in the true_path function in ...)
@@ -2388,6 +2398,7 @@
NOTE: reponse from Marcelo: No - v2.4 is safe because back there current->signal was not shared.
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.6.9 2.6.9-6
- kernel-source-2.6.10 2.6.10-6
CAN-2005-0177 (nls_ascii.c in Linux before 2.6.8.1 uses an incorrect table size, ...)
@@ -2395,6 +2406,7 @@
NOTE: see USN-82-1
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.6.9 2.6.9-6
- kernel-source-2.6.10 2.6.10-6
CAN-2005-0176 (The shmctl function in Linux 2.6.9 and earlier allows local users to ...)
@@ -2519,10 +2531,12 @@
NOTE: reserved
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0135
NOTE: reserved
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0134
NOTE: reserved
CAN-2004-1381 (Firefox before 1.0 and Mozilla before 1.7.5 allow inactive ...)
@@ -2923,6 +2937,7 @@
CAN-2004-1337 (The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 ...)
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.6.9 2.6.9-6
- kernel-source-2.6.10 2.6.10-1
CAN-2004-1336 (The xdvizilla script in tetex-bin 2.0.2 creates temporary files with ...)
@@ -3567,6 +3582,7 @@
NOTE: Fixed in 2.6.10 upstream
- kernel-source-2.6.8 2.6.8-14
- kernel-image-2.6.8-ia64 2.6.8-13
+ - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.6.9 s.6.9-14
CAN-2004-1057 (Multiple drivers in Linux kernel 2.4.19 and earlier do not properly ...)
NOTE: fixed after kernel 2.4.19