[Secure-testing-commits] r13199 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Wed Nov 4 22:44:35 UTC 2009
Author: gilbert-guest
Date: 2009-11-04 22:44:35 +0000 (Wed, 04 Nov 2009)
New Revision: 13199
Modified:
data/CVE/list
Log:
info for kernel issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-11-04 22:35:34 UTC (rev 13198)
+++ data/CVE/list 2009-11-04 22:44:35 UTC (rev 13199)
@@ -4054,10 +4054,11 @@
NOTE: access in order to exploit that
NOTE: http://lists.grok.org.uk/pipermail/full-disclosure/2009-July/069849.html
CVE-2009-2584 (Off-by-one error in the options_write function in ...)
- - linux-2.6 <unfixed> (low)
+ - linux-2.6 <unfixed> (high)
[etch] - linux-2.6 <not-affected> (vulnerable code not present)
[lenny] - linux-2.6 <not-affected> (vulnerable code not present)
- linux-2.6.24 <not-affected> (vulnerable code not present)
+ NOTE: exploit code exists
CVE-2009-2583 (Multiple session fixation vulnerabilities in IBM Tivoli Identity ...)
NOT-FOR-US: IBM Tivoli
CVE-2009-2582 (Stack-based buffer overflow in manager.exe in Akamai Download Manager ...)
More information about the Secure-testing-commits
mailing list