[Secure-testing-commits] r12362 - data/CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Fri Jul 17 06:35:07 UTC 2009


Author: gilbert-guest
Date: 2009-07-17 06:35:04 +0000 (Fri, 17 Jul 2009)
New Revision: 12362

Modified:
   data/CVE/list
Log:
kernel-sec sync


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-07-16 22:23:16 UTC (rev 12361)
+++ data/CVE/list	2009-07-17 06:35:04 UTC (rev 12362)
@@ -1432,13 +1432,17 @@
 CVE-2009-1960 (inc/init.php in DokuWiki 2009-02-14, rc2009-02-06, and rc2009-01-30, ...)
 	- dokuwiki 0.0.20090214b-1 (unimportant)
 	NOTE: we don't support setups with register_globals enabled
-CVE-2009-1897
+CVE-2009-1897 [linux-2.6: null pointer dereference in tun/tap]
 	RESERVED
+	- linux-2.6 2.6.30-3 (low)
+	[etch] - linux-2.6 <not-affected> (vulnerable code introduced in 2.6.29)
+	[lenny] - linux-2.6 <not-affected> (vulnerable code introduced in 2.6.29)
+	- linux-2.6.24 <not-affected> (vulnerable code introduced in 2.6.29)
 CVE-2009-1896
 	RESERVED
 CVE-2009-1895 [linux-2.6: potential vulnerabilites in the personality subsystem]
 	RESERVED
-	- linux-2.6 <unfixed> (low)
+	- linux-2.6 2.6.30-3 (low)
 	- linux-2.6.24 <removed>
 CVE-2009-1894
 	RESERVED




More information about the Secure-testing-commits mailing list