Author: joeyh Date: 2005-01-10 20:10:08 +0100 (Mon, 10 Jan 2005) New Revision: 259 Modified: sarge-checks/CAN/list Log: updates from kernel changelogs Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-01-09 19:56:04 UTC (rev 258) +++ sarge-checks/CAN/list 2005-01-10 19:10:08 UTC (rev 259) @@ -284,8 +284,8 @@ CAN-2004-1235 NOTE: reserved - kernel-source-2.6.8 2.6.9-5 - NOTE: and binary packages built from it - - kernel-source-2.4.27 (unfixed; bug #289202) + - kernel-source-2.4.27 2.4.27-8 + NOTE: and binary packages built from them CAN-2004-1234 (load_elf_binary in Linux before 2.4.26 allows local users to cause a ...) TODO: check with kernel team CAN-2004-1233 (Integer overflow in Gadu-Gadu allows remote attackers to cause a ...) @@ -627,7 +627,7 @@ CAN-2004-1075 (Cross-site scripting (XSS) vulnerability in standard_error_message.dtml ...) - zope-zwiki (unfixed; bug #282944) CAN-2004-1074 (The binfmt functionality in the Linux kernel, when "memory overcommit" ...) - - kernel-source-2.6.8 2.6.8-9 + - kernel-source-2.6.8 2.6.8-11 - kernel-source-2.4.27 2.4.27-7 CAN-2004-1073 (The open_exec function in the execve functionality (exec.c) in Linux ...) NOTE: fixed in 2.6.8 and 2.4.27 @@ -638,11 +638,13 @@ CAN-2004-1070 (The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to ...) NOTE: fixed in 2.6.8 and 2.4.27 CAN-2004-1069 (Race condition in SELinux 2.6.x through 2.6.9 allows local users to ...) - NOTE: fixed in kernel team svn, 2.6 only issue - TODO: make sure it gets to testing, add release version + NOTE: 2.6 only issue + - kernel-source-2.6.8 2.6.8-11 + NOTE: and the binaries built from it CAN-2004-1068 (A "missing serialization" error in the unix_dgram_recvmsg function in ...) - TODO: make sure it gets to testing, and the kernel-images built from it - kernel-source-2.4.27 2.4.27-7 + - kernel-source-2.6.8 2.6.8-11 + NOTE: and the binary packages built from them CAN-2004-1067 (Off-by-one error in the mysasl_canon_user function in Cyrus IMAP ...) NOTE: verified cyrus21-imapd 2.1.17-3 is not vulnerable, seems NOTE: to only affect 2.2 series. @@ -670,7 +672,9 @@ CAN-2004-1057 NOTE: reserved CAN-2004-1056 (Direct Rendering Manager (DRM) driver in Linux kernel 2.6 does not ...) - TODO: check with kernel team + - kernel-source-2.4.27 2.4.27-8 + - kernel-source-2.6.8 2.6.8-11 + NOTE: and the binaries built from them CAN-2004-1055 (Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin ...) - phpmyadmin 2:2.6.0-pl3-1 CAN-2004-1054 (Untrusted execution path vulnerability in invscout in IBM AIX 5.1.0, ...)