jmm-guest at alioth.debian.org
2008-Jun-25 21:47 UTC
[Secure-testing-commits] r9156 - data/CVE
Author: jmm-guest
Date: 2008-06-25 21:47:27 +0000 (Wed, 25 Jun 2008)
New Revision: 9156
Modified:
data/CVE/list
Log:
three more 2.6.24 issues
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-06-25 21:38:20 UTC (rev 9155)
+++ data/CVE/list 2008-06-25 21:47:27 UTC (rev 9156)
@@ -3281,7 +3281,7 @@
CVE-2008-1375 (Race condition in the directory notification subsystem (dnotify)
in ...)
{DSA-1565-1}
- linux-2.6 2.6.25-2 (low)
- - linux-2.6.24 <unfixed>
+ - linux-2.6.24 2.6.24-6~etchnhalf.2
CVE-2008-1374 (Integer overflow in pdftops filter in CUPS in Red Hat Enterprise
Linux ...)
- cupsys <not-affected> (Redhat-specific incomplete patch, upstream
patch is complete)
- cups <not-affected> (Redhat-specific incomplete patch, upstream patch
is complete)
@@ -5087,7 +5087,7 @@
CVE-2008-0600 (The vmsplice_to_pipe function in Linux kernel 2.6.17 through
2.6.24.1 ...)
{DSA-1494-1 DTSA-113-1}
- linux-2.6 2.6.24-4 (high)
- - linux-2.6.24 <unfixed>
+ - linux-2.6.24 <not-affected> (Fixed before initial upload, in 2.6.24-4
of linux-2.6)
CVE-2008-0599 (The init_request_info function in sapi/cgi/cgi_main.c in PHP
before ...)
{DTSA-135-1}
- php5 5.2.6-1
@@ -5579,8 +5579,9 @@
- ghostscript 8.61.dfsg.1-1.1 (medium; bug #468190)
CVE-2007-6694 (The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel
2.4.21 ...)
{DSA-1565-1 DSA-1503-2 DSA-1504-1 DSA-1503-1}
- - linux-2.6 <unfixed>
- - linux-2.6.24 <unfixed>
+ - linux-2.6 2.6.24-1
+ - linux-2.6.24 <not-affected> (Fixed before initial upload, upstream in
2.6.24)
+ NOTE: Upstream commit 9ac71d00398674aaec664f30559f0a21d963862f, part of
2.6.24
CVE-2008-XXXX [exempi buffer overflow in GIF ReadHeader() function]
- exempi 1.99.7-1 (bug #454297)
CVE-2008-0544 (Heap-based buffer overflow in the IMG_LoadLBM_RW function in
IMG_lbm.c ...)