[Secure-testing-commits] r9156 - data/CVE

[jmm-guest at alioth.debian.org]

Author: jmm-guest
Date: 2008-06-25 21:47:27 +0000 (Wed, 25 Jun 2008)
New Revision: 9156

Modified:
   data/CVE/list
Log:
three more 2.6.24 issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-06-25 21:38:20 UTC (rev 9155)
+++ data/CVE/list	2008-06-25 21:47:27 UTC (rev 9156)
@@ -3281,7 +3281,7 @@
 CVE-2008-1375 (Race condition in the directory notification subsystem (dnotify) in ...)
 	{DSA-1565-1}
 	- linux-2.6 2.6.25-2 (low)
-	- linux-2.6.24 <unfixed>
+	- linux-2.6.24 2.6.24-6~etchnhalf.2
 CVE-2008-1374 (Integer overflow in pdftops filter in CUPS in Red Hat Enterprise Linux ...)
 	- cupsys <not-affected> (Redhat-specific incomplete patch, upstream patch is complete)
 	- cups <not-affected> (Redhat-specific incomplete patch, upstream patch is complete)
@@ -5087,7 +5087,7 @@
 CVE-2008-0600 (The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 ...)
 	{DSA-1494-1 DTSA-113-1}
 	- linux-2.6 2.6.24-4 (high)
-	- linux-2.6.24 <unfixed>
+	- linux-2.6.24 <not-affected> (Fixed before initial upload, in 2.6.24-4 of linux-2.6)
 CVE-2008-0599 (The init_request_info function in sapi/cgi/cgi_main.c in PHP before ...)
 	{DTSA-135-1}
 	- php5 5.2.6-1
@@ -5579,8 +5579,9 @@
 	- ghostscript 8.61.dfsg.1-1.1 (medium; bug #468190)
 CVE-2007-6694 (The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 ...)
 	{DSA-1565-1 DSA-1503-2 DSA-1504-1 DSA-1503-1}
-	- linux-2.6 <unfixed>
-	- linux-2.6.24 <unfixed>
+	- linux-2.6 2.6.24-1
+	- linux-2.6.24 <not-affected> (Fixed before initial upload, upstream in 2.6.24)
+        NOTE: Upstream commit 9ac71d00398674aaec664f30559f0a21d963862f, part of 2.6.24
 CVE-2008-XXXX [exempi buffer overflow in GIF ReadHeader() function]
 	- exempi 1.99.7-1 (bug #454297)
 CVE-2008-0544 (Heap-based buffer overflow in the IMG_LoadLBM_RW function in IMG_lbm.c ...)