Author: gilbert-guest Date: 2009-11-04 22:44:35 +0000 (Wed, 04 Nov 2009) New Revision: 13199 Modified: data/CVE/list Log: info for kernel issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-11-04 22:35:34 UTC (rev 13198) +++ data/CVE/list 2009-11-04 22:44:35 UTC (rev 13199) @@ -4054,10 +4054,11 @@ NOTE: access in order to exploit that NOTE: http://lists.grok.org.uk/pipermail/full-disclosure/2009-July/069849.html CVE-2009-2584 (Off-by-one error in the options_write function in ...) - - linux-2.6 <unfixed> (low) + - linux-2.6 <unfixed> (high) [etch] - linux-2.6 <not-affected> (vulnerable code not present) [lenny] - linux-2.6 <not-affected> (vulnerable code not present) - linux-2.6.24 <not-affected> (vulnerable code not present) + NOTE: exploit code exists CVE-2009-2583 (Multiple session fixation vulnerabilities in IBM Tivoli Identity ...) NOT-FOR-US: IBM Tivoli CVE-2009-2582 (Stack-based buffer overflow in manager.exe in Akamai Download Manager ...)