[Secure-testing-commits] r2867 - data/CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Sun Nov 27 11:44:33 UTC 2005 

Author: jmm-guest
Date: 2005-11-27 11:44:28 +0000 (Sun, 27 Nov 2005)
New Revision: 2867

Modified:
   data/CVE/list
Log:
kernel fixes and CVEfications


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-11-27 05:49:47 UTC (rev 2866)
+++ data/CVE/list	2005-11-27 11:44:28 UTC (rev 2867)
@@ -126,19 +126,18 @@
 	NOT-FOR-US: Sambar
 CVE-2003-1284 (Sambar Server before 6.0 beta 6 allows remote attackers to obtain ...)
 	NOT-FOR-US: Sambar
-CVE-2005-XXXX [Kernel DoS through integer overflow in invalidate_inode_pages2()]
-	- linux-2.6 <unfixed>
-	NOTE: Confirmed by Horms, CVE requested
-CVE-2005-XXXX [netfilter protoinfo dos]
+CVE-2005-3808 [Kernel DoS through integer overflow in invalidate_inode_pages2()]
 	- linux-2.6 2.6.14-4 (medium)
 	[sarge] - kernel-source-2.4.27 <not-affected> (Vulnerable code not present)
 	[sarge] - kernel-source-2.6.8 <not-affected> (Vulnerable code not present)
-	NOTE: Fixed in SVN by Horms, CVE requested
-CVE-2005-XXXX [netfilter icmp id DoS]
+CVE-2005-3809 [netfilter protoinfo dos]
 	- linux-2.6 2.6.14-4 (medium)
 	[sarge] - kernel-source-2.4.27 <not-affected> (Vulnerable code not present)
 	[sarge] - kernel-source-2.6.8 <not-affected> (Vulnerable code not present)
-	NOTE: Fixed in SVN by Horms, CVE requested
+CVE-2005-3810 [netfilter icmp id DoS]
+	- linux-2.6 2.6.14-4 (medium)
+	[sarge] - kernel-source-2.4.27 <not-affected> (Vulnerable code not present)
+	[sarge] - kernel-source-2.6.8 <not-affected> (Vulnerable code not present)
 CVE-2005-3759 (Multiple cross-site scripting (XSS) vulnerabilities in Horde before ...)
 	{DSA-909-1}
 	- horde3 3.0.7-1 (bug #340323; medium)
@@ -1725,7 +1724,7 @@
 CVE-2005-3238 (Multiple unspecified vulnerabilities in Solaris 10 SCTP Socket Option ...)
 	NOT-FOR-US: Solaris
 CVE-2005-3257 (The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12 allows local ...)
-	- linux-2.6 <unfixed> (bug #334113; medium)
+	- linux-2.6 2.6.14-3 (bug #334113; medium)
 	- kernel-source-2.4.27 <unfixed> (medium)
 CVE-2005-3237 (Cross-site scripting (XSS) vulnerability in Cyphor 0.19 allows remote ...)
 	NOT-FOR-US: Cyphor

More information about the Secure-testing-commits mailing list