[Secure-testing-commits] r1079 - sarge-checks/CAN

Moritz Muehlenhoff jmm-guest@costa.debian.org
Tue, 17 May 2005 07:10:51 +0000


Author: jmm-guest
Date: 2005-05-17 07:10:48 +0000 (Tue, 17 May 2005)
New Revision: 1079

Modified:
   sarge-checks/CAN/list
Log:
Fresh local kernel root vulnerabilities.


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-05-16 23:55:06 UTC (rev 1078)
+++ sarge-checks/CAN/list	2005-05-17 07:10:48 UTC (rev 1079)
@@ -1,4 +1,4 @@
-CAN-2005-XXX [libxpm4: new s_popen() function is insecure garbage]
+CAN-2005-XXXX [libxpm4: new s_popen() function is insecure garbage]
 	- libxpm4 (unfixed; bug #308783)
 CAN-2005-1589
 	NOTE: reserved
@@ -1482,8 +1482,9 @@
 	NOTE: reserved
 CAN-2005-1265
 	NOTE: reserved
-CAN-2005-1264
-	NOTE: reserved
+CAN-2005-1264 [Local privilege escalation in the Linux kernel's raw and pktcdvd ioctls]
+	- kernel-source-2.6.8 (unfixed; bug filed)
+	- kernel-source-2.6.11 2.6.11-5
 CAN-2005-1263 [Linux kernel ELF core dump privilege escalation]
 	- kernel-source-2.6.11 2.6.11 2.6.11-4
 	- kernel-source-2.6.8 2.6.8-16