Author: jmm-guest
Date: 2005-11-25 13:12:10 +0000 (Fri, 25 Nov 2005)
New Revision: 2865
Modified:
data/CVE/list
Log:
updates on kernel issues
Modified: data/CVE/list
==================================================================---
data/CVE/list 2005-11-25 12:42:38 UTC (rev 2864)
+++ data/CVE/list 2005-11-25 13:12:10 UTC (rev 2865)
@@ -2445,11 +2445,9 @@
- libungif4 4.1.3-4 (bug #337972; medium)
CVE-2005-2973 (The udp_v6_get_port function in udp.c in Linux 2.6 before
2.6.14-rc5, ...)
- linux-2.6 2.6.13+2.6.14-rc4-0experimental.1 (low)
- - kernel-source-2.4.27 <unfixed>
- TODO: Check, whether this is fixed in sid''s 2.4.27
+ - kernel-source-2.4.27 2.4.27-12
[sarge] - kernel-source-2.6.8 2.6.8-16sarge2
[sarge] - kernel-source-2.4.27 2.4.27-10sarge2
- TODO: According to the mail by dannf this is fixed in sarge2, please revert if
incorrect
CVE-2005-2972 (Multiple stack-based buffer overflows in the RTF import feature
in ...)
{DSA-894-1}
- abiword 2.4.1-1 (bug #333740; medium)
@@ -4015,9 +4013,6 @@
- kernel-source-2.6.8 2.6.8-16sarge1 (bug #309308; low)
NOTE: 2.6.12-1 contained a partially broken fix
- linux-2.6 2.6.12-6 (bug #309308; low)
-CVE-2005-XXXX [DoS by removal of default ACLs in ext2/ext3]
- NOTE: Fixed in SVN for kernel-source-2.4.27 and 2.6.8
- TODO: Check, whether this is fixed in linux-2.6 SVN as well
CVE-2005-XXXX [Unspecified buffer overflow in metar]
- metar 20050807.1-1 (unknown)
CVE-2005-2489 (Web Content Management News System allows remote attackers to
create ...)