[Secure-testing-commits] r665 - sarge-checks/CAN
Dominic Hargreaves
dom-guest@costa.debian.org
Sat, 26 Mar 2005 01:40:05 +0000
Author: dom-guest
Date: 2005-03-26 01:40:01 +0000 (Sat, 26 Mar 2005)
New Revision: 665
Modified:
sarge-checks/CAN/list
Log:
Remove some kernel-image lines now that the updatelist script automatically
deals with them.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-03-25 21:43:14 UTC (rev 664)
+++ sarge-checks/CAN/list 2005-03-26 01:40:01 UTC (rev 665)
@@ -185,7 +185,6 @@
NOTE: not-for-us (GoodTech Telnet Server)
CAN-2005-0767 (Race condition in the Radeon DRI driver for Linux kernel 2.6.8.1 ...)
- kernel-source-2.6.8 2.6.8-15
- - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0766 (Unknown vulnerability in the sFlow dissector in Ethereal 0.9.14 ...)
- ethereal 0.10.10-1
CAN-2005-0765 (Unknown vulnerability in the JXTA dissector in Ethereal 0.10.9 allows ...)
@@ -291,8 +290,6 @@
NOTE: 2.6 through .11
TODO: check with kernel team (what about 2.4.27?)
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0735 (newsscript.pl for NewsScript allows remote attachers to gain ...)
NOTE: not-for-us (newsscript)
CAN-2005-0734 (PY Software Active Webcam WebServer (webcam.exe) 5.5 allows remote ...)
@@ -973,24 +970,16 @@
NOTE: not-for-us (Trend Micro AntiVirus)
CAN-2005-0532 (The reiserfs_copy_from_user_to_file_region function in reiserfs/file.c ...)
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
NOTE: 2.4.27 seems to be unaffected
CAN-2005-0531 (The atm_get_addr function in addr.c for Linux kernel 2.6.10 and 2.6.11 ...)
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.4.27 (unfixed; bug #296905)
NOTE: affects 2.6 and 2.4
CAN-2005-0530 (Signedness error in the copy_from_read_buf function in n_tty.c for ...)
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
NOTE: affects only 2.6 (see #296906)
CAN-2005-0529 (Linux kernel 2.6.10 and 2.6.11rc1-bk6 uses different size types for ...)
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
NOTE: 2.4.27 seems to be unaffected
CAN-2005-0528
NOTE: reserved
@@ -1739,7 +1728,6 @@
{DSA-693-1}
CAN-2005-0384 (Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 ...)
- kernel-source-2.6.8 2.6.8-15
- - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.4.27 (pending; fixed in debian-kernel SVN)
CAN-2004-1488 (wget 1.8.x and 1.9.x does not filter or quote control characters when ...)
NOTE: Submitted patch not acceptable according to Andreas Barth
@@ -2388,7 +2376,6 @@
NOTE: 2.6.11 is not affected, apparantly 2.6.10 is no longer relevant
NOTE: was bug#300838
- kernel-source-2.6.8 2.6.8-15
- - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.4.27 2.4.27-9
CAN-2005-0209 (Netfilter in Linux kernel 2.6.8.1 allows remote attackers to cause a ...)
NOTE: <horms> all kernels seem to be clear with regards to 2005-0209
@@ -2400,8 +2387,6 @@
NOTE: http://linux.bkbits.net:8080/linux-2.6/cset@41db2d65wbgJvuXTv4x9_quExW0vEA
NOTE: fixed in upstream 2.6.10, 2.6.9 is dead
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0206 (The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 ...)
NOTE: turns out that tetex was patched for CAN-2004-0888 with
NOTE: a fixed patch from the beginning
@@ -2419,8 +2404,6 @@
- kernel-source-2.4.27 2.4.27-9
- kernel-source-2.6.8 2.6.8-14
- kernel-source-2.6.11 2.6.11-1
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0203
NOTE: reserved
CAN-2005-0202 (Directory traversal vulnerability in the true_path function in ...)
@@ -2482,16 +2465,12 @@
NOTE: <horms> i would try asking marcello
NOTE: reponse from Marcelo: No - v2.4 is safe because back there current->signal was not shared.
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.6.9 2.6.9-6
- kernel-source-2.6.10 2.6.10-6
CAN-2005-0177 (nls_ascii.c in Linux before 2.6.8.1 uses an incorrect table size, ...)
NOTE: According to joshk, doesn't apply to 2.4.27
NOTE: see USN-82-1
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.6.9 2.6.9-6
- kernel-source-2.6.10 2.6.10-6
CAN-2005-0176 (The shmctl function in Linux 2.6.9 and earlier allows local users to ...)
@@ -2615,13 +2594,9 @@
CAN-2005-0136
NOTE: reserved
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0135
NOTE: reserved
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
CAN-2005-0134
NOTE: reserved
CAN-2004-1381 (Firefox before 1.0 and Mozilla before 1.7.5 allow inactive ...)
@@ -3010,7 +2985,6 @@
CAN-2005-0001 (Race condition in the page fault handler (fault.c) for Linux kernel ...)
NOTE: i386 and smp specific
- kernel-source-2.6.8 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-13
- kernel-source-2.4.27 2.4.27-8
- kernel-image-2.4.27-i386 2.4.27-8
- kernel-image-2.4.27-speakup 2.4.27-1.1
@@ -3021,8 +2995,6 @@
NOTE: not-for-us (oracle)
CAN-2004-1337 (The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 ...)
- kernel-source-2.6.8 2.6.8-14
- - kernel-image-2.6.8-ia64 2.6.8-13
- - kernel-image-2.6.8-i386 2.6.8-15
- kernel-source-2.6.9 2.6.9-6
- kernel-source-2.6.10 2.6.10-1
CAN-2004-1336 (The xdvizilla script in tetex-bin 2.0.2 creates temporary files with ...)