Author: jmm-guest
Date: 2005-09-09 23:31:00 +0000 (Fri, 09 Sep 2005)
New Revision: 1893
Modified:
data/CAN/list
Log:
keeping Horms busy: Two new kernel vulnerabilities in sendmsg()
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-09-09 23:15:36 UTC (rev 1892)
+++ data/CAN/list 2005-09-09 23:31:00 UTC (rev 1893)
@@ -1214,8 +1214,9 @@
- kdebase (unfixed; bug #327039; medium)
CAN-2005-2493
NOTE: reserved
-CAN-2005-2492
+CAN-2005-2492 [Linux kernel sendmsg() DoS/information disclosure]
NOTE: reserved
+ - linux-2.6 (unfixed; bug filed; medium)
CAN-2005-2491 (Integer overflow in pcre_compile.c in Perl Compatible Regular
...)
{DSA-800-1 DTSA-10-1}
- pcre3 6.3-0.1etch1 (bug #324531; medium)
@@ -1224,8 +1225,9 @@
- python2.1 2.1.3dfsg-3 (medium)
- python2.2 2.2.3dfsg-4 (medium)
- python2.3 2.3.5-8 (medium)
-CAN-2005-2490
+CAN-2005-2490 [amd64 specific local privilege escalation in sendmsg() from
Linux kernel]
NOTE: reserved
+ - linux-2.6 (unfixed; bug filed; medium)
CAN-2004-2302 (Race condition in the sysfs_read_file and sysfs_write_file
functions ...)
- kernel-source-2.6.8 (unfixed; bug #322339; medium)
NOTE: Will appear in next 2.6.8 stable fix; 2.6.12 and AFAIK 2.4.27 not
affected
@@ -4107,7 +4109,7 @@
CAN-2005-1914 (CenterICQ 4.20.0 and earlier creates temporary files with
predictable ...)
{DSA-754-1 DTSA-2-1}
- centericq 4.20.0-7 (medium)
-CAN-2005-1913 [Kernel changelog for 2.6.12.1: Clean up subthread exec]
+CAN-2005-1913 [DoS: in Linux kernel: Clean up subthread exec]
NOTE: reserved
- linux-2.6 2.6.12-1 (medium)
- kernel-source-2.6.11 2.6.11-6 (normal)