[Secure-testing-commits] r20268 - data/CVE

Mon Oct 1 08:33:17 UTC 2012

Author: jmm
Date: 2012-10-01 08:33:17 +0000 (Mon, 01 Oct 2012)
New Revision: 20268

Modified:
   data/CVE/list
Log:
kernel fixes from 6.0.6


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2012-10-01 08:01:25 UTC (rev 20267)
+++ data/CVE/list	2012-10-01 08:33:17 UTC (rev 20268)
@@ -4476,6 +4476,7 @@
 	RESERVED
 	- linux 3.2.29-1
 	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 2.6.32-36
 	NOTE: http://www.openwall.com/lists/oss-security/2012/07/26/3
 CVE-2012-3429 (The dns_to_ldap_dn_escape function in src/ldap_convert.c in ...)
 	NOT-FOR-US: Dynamic LDAP backend plugin for BIND
@@ -4528,6 +4529,7 @@
 	RESERVED
 	- linux 3.2.29-1
 	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 2.6.32-36
 CVE-2012-3411
 	RESERVED
 	- dnsmasq 2.63-1 (low; bug #683372)
@@ -4589,6 +4591,7 @@
 	RESERVED
 	- linux 3.2.23-1
 	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 2.6.32-36
 CVE-2012-3399 (Config/diff.php in Basilic 1.5.14 allows remote attackers to execute ...)
 	NOT-FOR-US: Basilic
 CVE-2012-3398 (Algorithmic complexity vulnerability in Moodle 1.9.x before 1.9.19, ...)
@@ -6107,6 +6110,7 @@
 CVE-2012-2745 (The copy_creds function in kernel/cred.c in the Linux kernel before ...)
 	- linux 3.2.15-1
 	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 2.6.32-46
 CVE-2012-2744 (net/ipv6/netfilter/nf_conntrack_reasm.c in the Linux kernel before ...)
 	- linux 2.6.34-1
 	- linux-2.6 <removed>
@@ -7035,7 +7039,9 @@
 	REJECTED
 	- haproxy 1.4.15-1 (bug #674447)
 CVE-2012-2390 (Memory leak in mm/hugetlb.c in the Linux kernel before 3.4.2 allows ...)
-	- linux-2.6 3.2.19-1 (low)
+	- linux 3.2.19-1 (low)
+	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 2.6.32-46
 CVE-2012-2389 (hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 ...)
 	- hostapd <not-affected> (Debian package provides no default config file)
 	- wpa <not-affected> (Debian package provides no default config file)
@@ -7246,7 +7252,9 @@
 CVE-2012-2320 (ConnMan before 0.85 does not ensure that netlink messages originate ...)
 	- connman 1.0-1 (bug #672989)
 CVE-2012-2319 (Multiple buffer overflows in the hfsplus filesystem implementation in ...)
-	- linux-2.6 3.2.17-1 (low)
+	- linux 3.2.17-1 (low)
+	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 2.6.32-46
 CVE-2012-2318 (msg.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.4 ...)
 	- pidgin 2.10.4-1
 CVE-2012-2317 (The Debian php_crypt_revamped.patch patch for PHP 5.3.x, as used in ...)
@@ -7259,7 +7267,9 @@
 CVE-2012-2314 (The bootloader configuration module (pyanaconda/bootloader.py) in ...)
 	NOT-FOR-US: The anaconda installer
 CVE-2012-2313 (The rio_ioctl function in drivers/net/ethernet/dlink/dl2k.c in the ...)
-	- linux-2.6 3.2.19-1
+	- linux 3.2.19-1
+	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 2.6.32-46
 CVE-2012-2312
 	RESERVED
 	- jbossas4 <not-affected> (Only affects JBoss 7)
@@ -7665,6 +7675,8 @@
 	- linux 3.2.20-1
 CVE-2012-2136 (The sock_alloc_send_pskb function in net/core/sock.c in the Linux ...)
 	- linux 3.2.20-1
+	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 2.6.32-46
 CVE-2012-2135 (The utf-16 decoder in Python 3.1 through 3.3 does not update the ...)
 	- python3.1 <unfixed> (bug #670389)
 	- python3.2 3.2.3-1 (bug #670389)


