[Secure-testing-commits] r4395 - data/CVE

Stefan Fritsch stef-guest at costa.debian.org
Sun Jul 16 08:20:53 UTC 2006


Author: stef-guest
Date: 2006-07-16 08:20:51 +0000 (Sun, 16 Jul 2006)
New Revision: 4395

Modified:
   data/CVE/list
Log:
some linux-2.6.16 fixed, one new issue (CVE-2006-3626)

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-07-15 16:59:49 UTC (rev 4394)
+++ data/CVE/list	2006-07-16 08:20:51 UTC (rev 4395)
@@ -1,3 +1,6 @@
+CVE-2006-3626 [linux "nasty /proc vulnerability"]
+	- linux-2.6.16 2.6.16-17
+	- linux-2.6 <unfixed>
 CVE-2006-XXXX [insufficient form variable escaping]
 	- webauth 3.5.2-1
 CVE-2006-3590 (Unspecified vulnerability in mso.dll, as used by Microsoft PowerPoint ...)
@@ -1355,7 +1358,7 @@
 	TODO: check
 CVE-2006-2934 (SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux ...)
 	- linux-2.6 2.6.17-3
-	- linux-2.6.16 <unfixed>
+	- linux-2.6.16 2.6.16-17
 CVE-2006-2933
 	RESERVED
 CVE-2006-2932
@@ -2491,8 +2494,8 @@
 	- gdm <unfixed> (bug #375281; medium)
 	[sarge] - gdm <not-affected> (Vulnerable code has only been introduced with 2.8)
 CVE-2006-2451 (The suid_dumpable support in Linux kernel 2.6.13 up to versions before ...)
-	- linux-2.6 2.6.17-3
-	- linux-2.6.16 <unfixed> (high)
+	- linux-2.6 2.6.17-3 (high)
+	- linux-2.6.16 2.6.16-17 (high)
 CVE-2006-2450
 	RESERVED
 CVE-2006-2449 (KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users ...)




More information about the Secure-testing-commits mailing list