[Secure-testing-commits] r13297 - data/CVE

[Michael Gilbert]

Author: gilbert-guest
Date: 2009-11-16 21:01:59 +0000 (Mon, 16 Nov 2009)
New Revision: 13297

Modified:
   data/CVE/list
Log:
more kernel updates

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-11-16 19:33:48 UTC (rev 13296)
+++ data/CVE/list	2009-11-16 21:01:59 UTC (rev 13297)
@@ -761,7 +761,7 @@
 	NOTE: http://seclists.org/fulldisclosure/2009/Oct/263
 CVE-2009-3621 (net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows ...)
 	{DSA-1929-1 DSA-1928-1 DSA-1927-1}
-	- linux-2.6 <unfixed> (low)
+	- linux-2.6 2.6.31-2 (low)
 	- linux-2.6.24 <removed> (low)
 CVE-2009-3620 (The ATI Rage 128 (aka r128) driver in the Linux kernel before ...)
 	{DSA-1928-1 DSA-1927-1}
@@ -3302,7 +3302,7 @@
 	[lenny] - linux-2.6 2.6.26-19 (medium)
 CVE-2009-2848 (The execve function in the Linux kernel, possibly 2.6.30-rc6 and ...)
 	{DSA-1928-1 DSA-1872-1}
-	- linux-2.6 2.6.31-1 (low)
+	- linux-2.6 2.6.30-7 (low)
 	- linux-2.6.24 <removed>
 	[lenny] - linux-2.6 2.6.26-19 (low)
 CVE-2009-2847 (The do_sigaltstack function in kernel/signal.c in Linux kernel 2.4 ...)
@@ -3967,7 +3967,7 @@
 	- linux-2.6 2.6.30-6 (high; bug #541403)
 	- linux-2.6.24 <removed>
 CVE-2009-2691 (The mm_for_maps function in fs/proc/base.c in the Linux kernel ...)
-	- linux-2.6 2.6.31-1 (low)
+	- linux-2.6 2.6.30-7 (low)
 	- linux-2.6.24 <removed>
 CVE-2009-2690 (The encoder in Sun Java SE 6 before Update 15, and OpenJDK, grants ...)
 	- sun-java6 6-15-1
@@ -4337,7 +4337,7 @@
 	NOTE: access in order to exploit that
 	NOTE: http://lists.grok.org.uk/pipermail/full-disclosure/2009-July/069849.html
 CVE-2009-2584 (Off-by-one error in the options_write function in ...)
-	- linux-2.6 <unfixed> (high)
+	- linux-2.6 2.6.31-2 (high)
 	[etch] - linux-2.6 <not-affected> (vulnerable code not present)
 	[lenny] - linux-2.6 <not-affected> (vulnerable code not present)
 	- linux-2.6.24 <not-affected> (vulnerable code not present)