[Secure-testing-commits] r17030 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Thu Jul 28 22:09:28 UTC 2011 

Author: jmm
Date: 2011-07-28 22:09:27 +0000 (Thu, 28 Jul 2011)
New Revision: 17030

Modified:
   data/CVE/list
Log:
sync from kernel-sec and fix silly typo


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-07-28 21:59:37 UTC (rev 17029)
+++ data/CVE/list	2011-07-28 22:09:27 UTC (rev 17030)
@@ -1715,7 +1715,7 @@
 	NOT-FOR-US: VMware
 CVE-2011-2213 [kernel: inet_diag: fix inet_diag_bc_audit]
 	RESERVED
-	- linux-2.6 3.6.39-3
+	- linux-2.6 2.6.39-3
 CVE-2011-2212
 	RESERVED
 	{DSA-2282-1}
@@ -1875,7 +1875,7 @@
 	[lenny] - lua-expat <no-dsa> (Minor issue)
 CVE-2011-2184 [race condition in KSM]
 	RESERVED
-	- linux-2.6 <unfixed>
+	- linux-2.6 2.6.39-2
 	[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.39)
 	[squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.39)
 CVE-2011-2183 [race condition in KSM]
@@ -1924,7 +1924,7 @@
 CVE-2011-2182 [incomplete fix for cve-2011-1017]
 	RESERVED
 	{DSA-2264-1}
-	- linux-2.6 <unfixed>
+	- linux-2.6 2.6.39-2
 CVE-2011-2179 (Multiple cross-site scripting (XSS) vulnerabilities in config.c in ...)
 	- nagios3 3.2.3-3 (bug #629127)
 	[lenny] - nagios3 <not-affected> (Affected feature got introduced in 3.2.2)
@@ -2521,7 +2521,7 @@
 	- apr 1.4.5-1 (bug #627182)
 CVE-2011-1927 [kernel remote DoS]
 	RESERVED
-	- linux-2.6 <unfixed> (high)
+	- linux-2.6 2.6.39-1 (high)
 	[squeeze] - linux-2.6 <not-affected> (Vulnerable code not present)
 	[lenny] - linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2011-1926 (The STARTTLS implementation in Cyrus IMAP Server before 2.4.7 does not ...)
@@ -2995,7 +2995,7 @@
 CVE-2011-1776
 	RESERVED
 	{DSA-2264-1 DSA-2240-1}
-	- linux-2.6 <unfixed> (low)
+	- linux-2.6 2.6.39-1 (low)
 CVE-2011-1775 (The CSecurityTLS::processMsg function in common/rfb/CSecurityTLS.cxx ...)
 	NOT-FOR-US: TigerVNC
 CVE-2011-1774 (WebKit in Apple Safari before 5.0.6 has improper libxslt security ...)
@@ -3044,7 +3044,7 @@
 CVE-2011-1759
 	RESERVED
 	{DSA-2264-1 DSA-2240-1}
-	- linux-2.6 <unfixed>
+	- linux-2.6 2.6.39-1
 CVE-2011-1758 (The krb5_save_ccname_done function in providers/krb5/krb5_auth.c in ...)
 	- sssd <not-affected> (Only affects version 1.5+)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=700867
@@ -3479,7 +3479,7 @@
 CVE-2011-1582 (Apache Tomcat 7.0.12 and 7.0.13 processes the first request to a ...)
 	- tomcat6 <not-affected> (Only affects Tomcat 7)
 CVE-2011-1581 (The bond_select_queue function in drivers/net/bonding/bond_main.c in ...)
-	- linux-2.6 <unfixed> (low)
+	- linux-2.6 2.6.39-1 (low)
 	[squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.36)
 	[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.36)
 CVE-2011-1580 (The transwiki import functionality in MediaWiki before 1.16.3 does not ...)
@@ -6187,7 +6187,7 @@
 	[squeeze] - linux-2.6 2.6.32-31
 CVE-2011-0711 (The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux kernel ...)
 	{DSA-2264-1 DSA-2240-1}
-	- linux-2.6 <unfixed> (low)
+	- linux-2.6 2.6.38-1 (low)
 CVE-2011-0710 (The task_show_regs function in arch/s390/kernel/traps.c in the Linux ...)
 	{DSA-2264-1}
 	- linux-2.6 2.6.37-2 (low)

More information about the Secure-testing-commits mailing list