[Secure-testing-commits] r15153 - data/CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Sun Aug 15 03:59:33 UTC 2010 

Author: gilbert-guest
Date: 2010-08-15 03:59:29 +0000 (Sun, 15 Aug 2010)
New Revision: 15153

Modified:
   data/CVE/list
Log:
kernel updates

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-08-15 03:58:59 UTC (rev 15152)
+++ data/CVE/list	2010-08-15 03:59:29 UTC (rev 15153)
@@ -432,8 +432,9 @@
 CVE-2010-2799 [socat buffer overflow]
 	RESERVED
 	- socat 1.7.1.3-1 (bug #591443; medium)
-CVE-2010-2798
+CVE-2010-2798 [gfs2 null ptr dereference]
 	RESERVED
+	- linux-2.6 2.6.32-20
 CVE-2010-2797
 	RESERVED
 CVE-2010-2796
@@ -931,7 +932,7 @@
 	NOTE: this is "only" null write to an invalid pointer, no arbitrary location
 CVE-2010-2495 [l2tp oops]
 	RESERVED
-	- linux-2.6 <unfixed>
+	- linux-2.6 2.6.32-16 
 	[lenny] - linux-2.6 <not-affected> (vulnerability introduced in 2.6.29)
 CVE-2010-2618 (PHP remote file inclusion vulnerability in inc/smarty/libs/init.php in ...)
 	NOT-FOR-US: AdaptCMS
@@ -1138,8 +1139,9 @@
 	- clvm <unfixed> (bug #591204)
 CVE-2010-2525
 	RESERVED
-CVE-2010-2524
+CVE-2010-2524 [ms-dfs referrals]
 	RESERVED
+	- linux-2.6 2.6.32-19
 CVE-2010-2523 (Multiple buffer overflows in ha.c in the mipv6 daemon in UMIP 0.4 ...)
 	NOT-FOR-US: UMIP
 CVE-2010-2522 (The mipv6 daemon in UMIP 0.4 does not verify that netlink messages ...)
@@ -1877,8 +1879,9 @@
 	[lenny] - libvirt <no-dsa> (Minor issue)
 CVE-2010-2241
 	RESERVED
-CVE-2010-2240
+CVE-2010-2240 [mm: keep a guard page below a grow-down stack segment]
 	RESERVED
+	- linux-2.6 2.6.32-21
 CVE-2010-2239 [libvirt not setting user defined backing store format]
 	RESERVED
 	- libvirt 0.8.3-1 (low)
@@ -2314,9 +2317,9 @@
 CVE-2010-2067 (Stack-based buffer overflow in the TIFFFetchSubjectDistance function ...)
 	- tiff 3.9.4-1
 	[lenny] - tiff <not-affected> (Only affects 3.9.x)
-CVE-2010-2066
+CVE-2010-2066 [ext4 ioctl issue]
 	RESERVED
-	- linux-2.6 <unfixed>
+	- linux-2.6 2.6.32-21
 	[lenny] - linux-2.6 <not-affected> (Vulnerable code introduced in 2.6.31)
 CVE-2010-2065 (Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 ...)
 	- tiff 3.9.4-1

More information about the Secure-testing-commits mailing list