[Secure-testing-commits] r13449 - data/CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Fri Dec 4 13:44:06 UTC 2009


Author: gilbert-guest
Date: 2009-12-04 13:44:05 +0000 (Fri, 04 Dec 2009)
New Revision: 13449

Modified:
   data/CVE/list
Log:
new kernel issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-12-04 09:06:35 UTC (rev 13448)
+++ data/CVE/list	2009-12-04 13:44:05 UTC (rev 13449)
@@ -320,7 +320,9 @@
 CVE-2009-4028 (The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x ...)
 	TODO: check
 CVE-2009-4027 (Race condition in the mac80211 subsystem in the Linux kernel before ...)
-	TODO: check
+	- linux-2.6 <unfixed> (medium)
+	[etch] - linux-2.6 <not-affected> (introduced in 2.6.26)
+	- linux-2.6.24 <not-affected> (introduced in 2.6.26)
 CVE-2009-4026 (The mac80211 subsystem in the Linux kernel before ...)
 	- linux-2.6 <unfixed> (medium)
 	[etch] - linux-2.6 <not-affected> (introduced in 2.6.30)
@@ -349,8 +351,10 @@
 	NOTE: <https://www.isc.org/node/504>
 	NOTE: Only affects installations with trust anchors, but then the
 	NOTE: consequences are quite severe.
-CVE-2009-4020
+CVE-2009-4020 [linux-2.6: hfs buffer overflow]
 	RESERVED
+	- linux-2.6 <unfixed> (medium)
+	- linux-2.6.24 <removed> (medium)
 CVE-2009-4019 (mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not ...)
 	- mysql-dfsg-5.1 5.1.41-1
 	- mysql-dfsg-5.0 <removed>




More information about the Secure-testing-commits mailing list