Author: gilbert-guest
Date: 2010-02-12 03:55:32 +0000 (Fri, 12 Feb 2010)
New Revision: 14079
Modified:
data/CVE/list
Log:
kernel triage
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-02-11 21:14:32 UTC (rev 14078)
+++ data/CVE/list 2010-02-12 03:55:32 UTC (rev 14079)
@@ -1,3 +1,11 @@
+CVE-2010-0623 [futex refcount leak]
+ - linux-2.6 <unfixed>
+ [etch] - linux-2.6 <not-affected> (vulnerable code introduced in 2.6.28)
+ [lenny] - linux-2.6 <not-affected> (vulnerable code introduced in
2.6.28)
+ - linux-2.6.24 <not-affected> (vulnerable code introduced in 2.6.28)
+CVE-2010-0622 [futex null ptr dereference]
+ - linux-2.6 <unfixed>
+ - linux-2.6.24 <removed>
CVE-2010-0564 (Buffer overflow in Trend Micro URL Filtering Engine (TMUFE) in
...)
TODO: check
CVE-2009-4640 (Array index error in vorbis_dec.c in FFmpeg 0.5 allows remote
...)
@@ -364,8 +372,10 @@
RESERVED
CVE-2010-0416
RESERVED
-CVE-2010-0415
+CVE-2010-0415 [info leak in sys move pages]
RESERVED
+ - linux-2.6 2.6.32-8
+ - linux-2.6.24 <removed>
CVE-2010-0414 [gnome-screensaver vulnerability]
RESERVED
- gnome-screensaver 2.28.2-1 (bug #569084)
@@ -383,7 +393,7 @@
NOTE: http://sourceware.org/bugzilla/show_bug.cgi?id=11234 and RH
CVE-2010-0410 [kernel OOM via NETLINK_CONNECTOR]
RESERVED
- - linux2.6 <unfixed>
+ - linux2.6 2.6.32-8
- linux-2.6.24 <removed>
NOTE:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=f98bfbd78c37c5946cc53089da32a5f741efdeb7
CVE-2010-0409 (Buffer overflow in the GMIME_UUENCODE_LEN macro in ...)
@@ -750,23 +760,25 @@
NOTE: http://seclists.org/fulldisclosure/2010/Jan/296
CVE-2010-0309 [linux kvm pit_ioport_read() DoS]
RESERVED
- - linux-2.6 <unfixed>
+ - linux-2.6 2.6.32-8
[etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25)
- linux-2.6.24 <not-affected> (kvm introduced in 2.6.25)
- kvm <removed>
NOTE:
http://git.kernel.org/?p=linux/kernel/git/avi/kvm.git;a=commitdiff;h=336f40a728b9a4a5db5e1df5c89852c79ff95604
- NOTE: see RH
- TODO: check
CVE-2010-0308 (lib/rfc1035.c in Squid 2.x, 3.0 through 3.0.STABLE22, and 3.1
through ...)
{DSA-1991-1}
- squid <unfixed>
- squid3 <unfixed>
NOTE: http://www.squid-cache.org/Advisories/SQUID-2010_1.txt
-CVE-2010-0307
+CVE-2010-0307 [denial-of-service on amd64]
RESERVED
- - linux-2.6 2.6.32-7
-CVE-2010-0306
+ - linux-2.6 2.6.32-8
+ - linux-2.6.24 <removed>
+CVE-2010-0306 [kvm privilege escalation]
RESERVED
+ - linux-2.6 <unfixed>
+ [etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25)
+ - linux-2.6.24 <not-affected> (kvm introduced in 2.6.25)
CVE-2010-0305 (ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote
attackers to ...)
- ejabberd 2.1.2-2 (medium; bug #568383)
NOTE: https://support.process-one.net/browse/EJAB-1173
@@ -785,17 +797,20 @@
CVE-2010-0300 (cache.c in ircd-ratbox before 2.2.9 allows remote attackers to
cause a ...)
{DSA-1980-1}
- ircd-ratbox 3.0.6.dfsg-1 (low; bug #567191)
-CVE-2010-0299
+CVE-2010-0299 [unrestrictive permissions for devtmpfs root directory could lead
to privilege escalation]
RESERVED
-CVE-2010-0298
+ - linux-2.6 <unfixed>
+ - linux-2.6.24 <removed>
+CVE-2010-0298 [kvm privilege escalation]
RESERVED
-CVE-2010-0297 [linux kvm usb-linux.c buffer overflow]
- RESERVED
- linux-2.6 <unfixed>
[etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25)
- linux-2.6.24 <not-affected> (kvm introduced in 2.6.25)
- kvm <removed>
- NOTE: see RH
+CVE-2010-0297 [kvm userspace usb-linux.c buffer overflow]
+ RESERVED
+ - qemu-kvm 0.11.1+dfsg-1
+ - kvm <removed>
CVE-2010-0296
RESERVED
CVE-2010-0295 (lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each
read ...)
@@ -4367,9 +4382,8 @@
- php5 5.2.12.dfsg.1-1 (unimportant)
NOTE: safe_mode bypass
CVE-2009-3556 (A certain Red Hat configuration step for the qla2xxx driver in
the ...)
- TODO: check
- NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-3556
- NOTE: said to be RH-specific
+ - linux-2.6 <not-affected> (redhat-specific configuration issue)
+ - linux-2.6.24 <not-affected> (redhat-specific configuration issue)
CVE-2009-3555 (The TLS protocol, and the SSL protocol 3.0 and possibly earlier,
as ...)
{DSA-1934-1}
NOTE: See separate CVE-2009-3555 file in SVN
@@ -5204,8 +5218,7 @@
NOT-FOR-US: module for XOOPS
CVE-2009-3239
REJECTED
- - openoffice.org <not-affected>
- NOTE: SUSE says that it is not a dup of CVE-2009-2139 and CVE-2009-2140...
+ NOTE: dup of CVE-2009-2139 and CVE-2009-2140
CVE-2009-3238 (The get_random_int function in drivers/char/random.c in the
Linux ...)
{DSA-1929-1 DSA-1928-1 DSA-1927-1}
- linux-2.6 2.6.30-1 (low)
@@ -83396,14 +83409,20 @@
{DSA-497}
- mc 1:4.6.0-4.6.1-pre1-2
CVE-2004-0230 (TCP, when using a large Window Size, makes it easier for remote
...)
- NOT-FOR-US: famous TCP RST bug
+ - linux-2.6 <unfixed> (unimportant)
+ - linux-2.6.24 <removed> (unimportant)
+ NOTE: the attack works with a certain non-negligible probability, but even
+ NOTE: when successful, it only causes a TCP disconnect, which will (in most
+ NOTE: circumstances) be reestablished right away, causing essentially no
impact
CVE-2004-0229 (The framebuffer driver in Linux kernel 2.6.x does not properly
use the ...)
- NOT-FOR-US: Kernel 2.6 framebuffer bug
+ - linux-2.6 2.6.6-1
+ - linux-2.6.24 <not-affected>
CVE-2004-0228 (Integer signedness error in the cpufreq proc handler
(cpufreq_procctl) ...)
- kernel-source-2.4.27 <not-affected> (2.4 does not have cpufreq)
- linux-2.6 <not-affected> (fixed before first upload; 2.6.8)
CVE-2004-0227 (Buffer overflow in the zms script in ZoneMinder before 1.19.2
may ...)
- NOT-FOR-US: ZoneMinder
+ - zoneminder 1.22.3-1
+ NOTE: fixed in 1.19.2, which was released before initial upload of 1.22.3
CVE-2004-0226 (Multiple buffer overflows in Midnight Commander (mc) before
4.6.0 may ...)
{DSA-497}
- mc 1:4.6.0-4.6.1-pre1-2