[Secure-testing-commits] r675 - sarge-checks/CAN
Joey Hess
joeyh@costa.debian.org
Mon, 28 Mar 2005 15:58:57 +0000
Author: joeyh
Date: 2005-03-28 15:58:53 +0000 (Mon, 28 Mar 2005)
New Revision: 675
Modified:
sarge-checks/CAN/list
Log:
bunch-o-fixes in kernel team svn
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-03-28 10:20:39 UTC (rev 674)
+++ sarge-checks/CAN/list 2005-03-28 15:58:53 UTC (rev 675)
@@ -178,7 +178,7 @@
CAN-2005-0840
NOTE: rejected
CAN-2005-0839 (Linux kernel 2.6 before 2.6.11 does not restrict access to the N_MOUSE ...)
- - kernel-source-2.6.8 (unfixed; bug #301372)
+ - kernel-source-2.6.8 2.6.8-16
CAN-2005-0838 (Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow ...)
- icecast2 (unfixed; bug #301368)
CAN-2005-0837 (IceCast 2.20 allows remote attackers to bypass the XSL parser and ...)
@@ -249,7 +249,7 @@
CAN-2005-0816 (Buffer overflow in newgrp in Solaris 7 through 9 allows local users to ...)
NOTE: not-for-us (Solaris)
CAN-2005-0815 (Multiple "range checking flaws" in the ISO9660 filesystem handler in ...)
- - kernel-source-2.6.8 (unfixed; bug #300783)
+ - kernel-source-2.6.8 2.6.8-16
NOTE: Seems to affect 2.4 as well, needs clarification
CAN-2005-0814 (Unknown vulnerability in lshd in Lysator LSH 1.x and 2.x before 2.0.1 ...)
- lsh-utils 2.0.1-1
@@ -376,6 +376,10 @@
NOTE: reserved
CAN-2005-0750
NOTE: reserved
+ NOTE: according to changelog, "Fix signedness problem at socket
+ NOTE: creation in bluetooth which can lead to local root exploit."
+ - kernel-source-2.6.8 2.6.8-16
+ TODO: does it also affect 2.4?
CAN-2005-0749
NOTE: reserved
CAN-2003-1131 (PHP remote code injection vulnerability in index.php in ...)
@@ -1840,6 +1844,9 @@
- mozilla-firefox 1.0.2-1
CAN-2005-0400
NOTE: reserved
+ NOTE: according to changelog, "Fix information leak in ext2."
+ - kernel-source-2.6.8 2.6.8-16
+ TODO: check 2.4
CAN-2005-0399 [GIF heap overflow parsing Netscape extension 2 in Firefox]
- mozilla-firefox 1.0.2-1
CAN-2005-0398 (The KAME racoon daemon in ipsec-tools before 0.5 allows remote ...)