[Secure-testing-commits] r13299 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Mon Nov 16 21:34:10 UTC 2009
Author: gilbert-guest
Date: 2009-11-16 21:34:09 +0000 (Mon, 16 Nov 2009)
New Revision: 13299
Modified:
data/CVE/list
Log:
more kernel updates
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-11-16 21:14:19 UTC (rev 13298)
+++ data/CVE/list 2009-11-16 21:34:09 UTC (rev 13299)
@@ -703,7 +703,7 @@
- snort <unfixed> (low; bug #553584)
NOTE: -v is usually not used as it's slow and is only for debugging purposes
CVE-2009-3640 (The update_cr8_intercept function in arch/x86/kvm/x86.c in the KVM ...)
- - linux-2.6 <unfixed> (medium)
+ - linux-2.6 2.6.31-1 (medium)
[etch] - linux-2.6 <not-affected> (introduced in 2.6.25)
NOTE: fixed in upstream 2.6.32-rc1
- linux-2.6.24 <not-affected> (introduced in 2.6.25)
@@ -1005,7 +1005,7 @@
TODO: check
CVE-2009-3547 (Multiple race conditions in fs/pipe.c in the Linux kernel before ...)
{DSA-1929-1 DSA-1928-1 DSA-1927-1}
- - linux-2.6 2.6.31-2 (high)
+ - linux-2.6 <unfixed> (high)
- linux-2.6.24 <removed> (high)
NOTE: being exploited in the wild
CVE-2009-3546 (The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.0, and the ...)
More information about the Secure-testing-commits
mailing list