[Secure-testing-commits] r7099 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Thu Oct 25 11:20:55 UTC 2007
Author: nion
Date: 2007-10-25 11:20:54 +0000 (Thu, 25 Oct 2007)
New Revision: 7099
Modified:
data/CVE/list
Log:
CVE-2007-4573, CVE-2007-4571 fixed in linux-2.6 2.6.22-5
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-10-25 10:14:00 UTC (rev 7098)
+++ data/CVE/list 2007-10-25 11:20:54 UTC (rev 7099)
@@ -2898,11 +2898,11 @@
NOTE: redhat sent a reproducer to the vendor-sec list
CVE-2007-4573 (The IA32 system call emulation functionality in Linux kernel 2.4.x and ...)
{DSA-1381-2 DSA-1378-2 DSA-1378-1}
- - linux-2.6 <unfixed> (medium)
+ - linux-2.6 2.6.22-5 (medium)
CVE-2007-4572
RESERVED
CVE-2007-4571 (The snd_mem_proc_read function in sound/core/memalloc.c in the ...)
- - linux-2.6 <unfixed> (low; bug #444571)
+ - linux-2.6 2.6.22-5 (low; bug #444571)
NOTE: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=600
NOTE: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ccec6e2c4a74adf76ed4e2478091a311b1806212
NOTE: very easy to exploit locally
More information about the Secure-testing-commits
mailing list