[Secure-testing-commits] r987 - sarge-checks/CAN

Moritz Muehlenhoff jmm-guest@costa.debian.org
Wed, 04 May 2005 13:17:01 +0000


Author: jmm-guest
Date: 2005-05-04 13:16:58 +0000 (Wed, 04 May 2005)
New Revision: 987

Modified:
   sarge-checks/CAN/list
Log:
According to Horms from kernel team Debian is not affected


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-05-04 13:02:00 UTC (rev 986)
+++ sarge-checks/CAN/list	2005-05-04 13:16:58 UTC (rev 987)
@@ -1460,7 +1460,8 @@
 	NOTE: checked tn5250, apparently the only AS/400 emulator in debian
 	NOTE: cannot find STRPCO or STRPCCMD in tn5250.
 CAN-2005-0867 (Integer overflow in Linux kernel 2.6 allows local users to overwrite ...)
-	- kernel-source-2.6.8 (unfixed; bug #306137)
+	NOTE: According to Horms from the Debian kernel team 2.6.8 and 2.6.11 are not
+	NOTE: affected, 2.4 doesn't include sysfs anyway, see 306137
 CAN-2005-0866 (cdrecord before 4:2.0, when DEBUG is enabled, allows local users to ...)
 	- cdrtools 2.01+01a01-4
 CAN-2004-1771 (Scalable OGo (SOGo) 1.0 allows remote authenticated users to bypass ...)