[Secure-testing-commits] r21723 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Sat Mar 23 15:57:37 UTC 2013 

Author: carnil
Date: 2013-03-23 15:57:37 +0000 (Sat, 23 Mar 2013)
New Revision: 21723

Modified:
   data/CVE/list
Log:
some linux issues fixed with 3.2.41-1 upload

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-03-23 07:22:20 UTC (rev 21722)
+++ data/CVE/list	2013-03-23 15:57:37 UTC (rev 21723)
@@ -141,10 +141,10 @@
 CVE-2013-2566 (The RC4 algorithm, as used in the TLS protocol and SSL protocol, has ...)
 	NOTE: Generic protocol flaw in RC4
 CVE-2012-6549 (The isofs_export_encode_fh function in fs/isofs/export.c in the Linux ...)
-	- linux <unfixed> (low)
+	- linux 3.2.41-1 (low)
 	- linux-2.6 <removed> (low)
 CVE-2012-6548 (The udf_encode_fh function in fs/udf/namei.c in the Linux kernel ...)
-	- linux <unfixed> (low)
+	- linux 3.2.41-1 (low)
 	- linux-2.6 <removed> (low)
 CVE-2012-6547 (The __tun_chr_ioctl function in drivers/net/tun.c in the Linux kernel ...)
 	- linux 3.2.29-1 (low)
@@ -225,13 +225,13 @@
 CVE-2013-2549 (Unspecified vulnerability in Adobe Reader 11.0.02 allows remote ...)
 	NOT-FOR-US: Adobe Reader
 CVE-2013-2548 (The crypto_report_one function in crypto/crypto_user.c in the report ...)
-	- linux <unfixed> (low)
+	- linux 3.2.41-1 (low)
 	- linux-2.6 <removed> (low)
 CVE-2013-2547 (The crypto_report_one function in crypto/crypto_user.c in the report ...)
-	- linux <unfixed> (low)
+	- linux 3.2.41-1 (low)
 	- linux-2.6 <removed> (low)
 CVE-2013-2546 (The report API in the crypto user configuration API in the Linux ...)
-	- linux <unfixed> (low)
+	- linux 3.2.41-1 (low)
 	- linux-2.6 <removed> (low)
 CVE-2013-2545
 	RESERVED
@@ -1727,7 +1727,7 @@
 	NOTE: https://mariadb.atlassian.net/browse/MDEV-4252
 	TODO: Report to BTS
 CVE-2013-1860 (Heap-based buffer overflow in the wdm_in_callback function in ...)
-	- linux <unfixed>
+	- linux 3.2.41-1
 	- linux-2.6 <removed>
 CVE-2013-1859
 	RESERVED
@@ -1777,7 +1777,7 @@
 CVE-2013-1849
 	RESERVED
 CVE-2013-1848 (fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect ...)
-	- linux <unfixed>
+	- linux 3.2.41-1
 	- linux-2.6 <removed>
 	[squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.33)
 	NOTE: http://www.openwall.com/lists/oss-security/2013/03/20/8
@@ -1947,7 +1947,7 @@
 CVE-2013-1793
 	RESERVED
 CVE-2013-1792 (Race condition in the install_user_keyrings function in ...)
-	- linux <unfixed>
+	- linux 3.2.41-1
 	- linux-2.6 <removed>
 CVE-2013-1791
 	RESERVED
@@ -2031,7 +2031,7 @@
 CVE-2013-1768
 	RESERVED
 CVE-2013-1767 (Use-after-free vulnerability in the shmem_remount_fs function in ...)
-	- linux <unfixed>
+	- linux 3.2.41-1
 	- linux-2.6 <removed>
 CVE-2013-1766 (libvirt 1.0.2 and earlier sets the group owner to kvm for device ...)
 	{DSA-2650-1}
@@ -3970,7 +3970,7 @@
 CVE-2013-0915 (The GPU process in Google Chrome OS before 25.0.1364.173 allows ...)
 	NOT-FOR-US: Overflow in Chrome-specific libs
 CVE-2013-0914 (The flush_signal_handlers function in kernel/signal.c in the Linux ...)
-	- linux <unfixed> (low)
+	- linux 3.2.41-1 (low)
 	- linux-2.6 <removed> (low)
 CVE-2013-0913 (Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the ...)
 	- linux <unfixed>
@@ -5747,7 +5747,7 @@
 CVE-2013-0312 (389 Directory Server before 1.3.0.4 allows remote attackers to cause a ...)
 	- 389-ds-base 1.3.0.3-1 
 CVE-2013-0311 (The translate_desc function in drivers/vhost/vhost.c in the Linux ...)
-	- linux <unfixed>
+	- linux 3.2.41-1
 	- linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2013-0310 (The cipso_v4_validate function in net/ipv4/cipso_ipv4.c in the Linux ...)
 	- linux <unfixed>
@@ -6030,7 +6030,7 @@
 	NOTE: Upstream forum post: http://www.zoneminder.com/forums/viewtopic.php?f=29&t=20771
 CVE-2013-0231 (The pciback_enable_msi function in the PCI backend driver ...)
 	{DSA-2632-1}
-	- linux <unfixed>
+	- linux 3.2.41-1
 	- linux-2.6 <removed>
 CVE-2013-0230 (Stack-based buffer overflow in the ExecuteSoapAction function in the ...)
 	- miniupnpd <unfixed>
@@ -8726,7 +8726,7 @@
 	RESERVED
 	NOT-FOR-US: ovirt / vsdm
 CVE-2012-5517 (The online_pages function in mm/memory_hotplug.c in the Linux kernel ...)
-	- linux <unfixed>
+	- linux 3.2.41-1
 	- linux-2.6 <removed>
 	[squeeze] - linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2012-5516 (Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, when ...)

More information about the Secure-testing-commits mailing list