thr3ads.net - Secure testing commits - [Secure-testing-commits] r2867

If this information is useful, please help other people find it:
Share via:

Moritz Muehlenhoff

2005-Nov-27 11:44 UTC

[Secure-testing-commits] r2867 - data/CVE

Author: jmm-guest
Date: 2005-11-27 11:44:28 +0000 (Sun, 27 Nov 2005)
New Revision: 2867

Modified:
   data/CVE/list
Log:
kernel fixes and CVEfications


Modified: data/CVE/list
==================================================================---
data/CVE/list	2005-11-27 05:49:47 UTC (rev 2866)
+++ data/CVE/list	2005-11-27 11:44:28 UTC (rev 2867)
@@ -126,19 +126,18 @@
 	NOT-FOR-US: Sambar
 CVE-2003-1284 (Sambar Server before 6.0 beta 6 allows remote attackers to
obtain ...)
 	NOT-FOR-US: Sambar
-CVE-2005-XXXX [Kernel DoS through integer overflow in
invalidate_inode_pages2()]
-	- linux-2.6 <unfixed>
-	NOTE: Confirmed by Horms, CVE requested
-CVE-2005-XXXX [netfilter protoinfo dos]
+CVE-2005-3808 [Kernel DoS through integer overflow in
invalidate_inode_pages2()]
 	- linux-2.6 2.6.14-4 (medium)
 	[sarge] - kernel-source-2.4.27 <not-affected> (Vulnerable code not
present)
 	[sarge] - kernel-source-2.6.8 <not-affected> (Vulnerable code not
present)
-	NOTE: Fixed in SVN by Horms, CVE requested
-CVE-2005-XXXX [netfilter icmp id DoS]
+CVE-2005-3809 [netfilter protoinfo dos]
 	- linux-2.6 2.6.14-4 (medium)
 	[sarge] - kernel-source-2.4.27 <not-affected> (Vulnerable code not
present)
 	[sarge] - kernel-source-2.6.8 <not-affected> (Vulnerable code not
present)
-	NOTE: Fixed in SVN by Horms, CVE requested
+CVE-2005-3810 [netfilter icmp id DoS]
+	- linux-2.6 2.6.14-4 (medium)
+	[sarge] - kernel-source-2.4.27 <not-affected> (Vulnerable code not
present)
+	[sarge] - kernel-source-2.6.8 <not-affected> (Vulnerable code not
present)
 CVE-2005-3759 (Multiple cross-site scripting (XSS) vulnerabilities in Horde
before ...)
 	{DSA-909-1}
 	- horde3 3.0.7-1 (bug #340323; medium)
@@ -1725,7 +1724,7 @@
 CVE-2005-3238 (Multiple unspecified vulnerabilities in Solaris 10 SCTP Socket
Option ...)
 	NOT-FOR-US: Solaris
 CVE-2005-3257 (The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12 allows
local ...)
-	- linux-2.6 <unfixed> (bug #334113; medium)
+	- linux-2.6 2.6.14-3 (bug #334113; medium)
 	- kernel-source-2.4.27 <unfixed> (medium)
 CVE-2005-3237 (Cross-site scripting (XSS) vulnerability in Cyphor 0.19 allows
remote ...)
 	NOT-FOR-US: Cyphor

Secure testing commits - Nov 2005 - r2867 - data/CVE

[Secure-testing-commits] r2867 - data/CVE