Author: gilbert-guest
Date: 2011-03-20 17:42:59 +0000 (Sun, 20 Mar 2011)
New Revision: 16406
Modified:
data/CVE/list
Log:
squeeze point release kernel fixes
Modified: data/CVE/list
==================================================================---
data/CVE/list 2011-03-20 13:49:56 UTC (rev 16405)
+++ data/CVE/list 2011-03-20 17:42:59 UTC (rev 16406)
@@ -1111,6 +1111,7 @@
CVE-2011-1013 [drm_modeset_ctl signedness issue]
RESERVED
- linux-2.6 2.6.38-1
+ [squeeze] - linux-2.6 2.6.32-31
[lenny] - linux-2.6 <not-affected> (Vulnerable code not present)
CVE-2011-1012 (The ldm_parse_vmdb function in fs/partitions/ldm.c in the Linux
kernel ...)
- linux-2.6 2.6.38-1
@@ -1118,6 +1119,7 @@
NOT-FOR-US: seunshare
CVE-2011-1010 (Buffer overflow in the mac_partition function in
fs/partitions/mac.c ...)
- linux-2.6 2.6.37-2
+ [squeeze] - linux-2.6 2.6.32-31
CVE-2011-1009
RESERVED
CVE-2011-1008 (Scrips_Overlay.pm in Best Practical Solutions RT before 3.8.9
does not ...)
@@ -1920,10 +1922,12 @@
NOTE: http://anonsvn.wireshark.org/viewvc?view=rev&revision=35953
CVE-2011-0712 (Multiple buffer overflows in the caiaq Native Instruments USB
audio ...)
- linux-2.6 2.6.37-2
+ [squeeze] - linux-2.6 2.6.32-31
CVE-2011-0711 (The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux
kernel ...)
- linux-2.6 <unfixed> (low)
CVE-2011-0710 (The task_show_regs function in arch/s390/kernel/traps.c in the
Linux ...)
- linux-2.6 2.6.37-2 (low)
+ [squeeze] - linux-2.6 2.6.32-31
CVE-2011-0709 (The br_mdb_ip_get function in net/bridge/br_multicast.c in the
Linux ...)
- linux-2.6 <not-affected> (Introduced in 2.6.35-rc1 and fixed in
2.6.35-rc5)
CVE-2011-0708 [exif data processing DoS (limited abitrary memory access)]
@@ -2404,6 +2408,7 @@
CVE-2011-0521 (The dvb_ca_ioctl function in drivers/media/dvb/ttpci/av7110_ca.c
in ...)
{DSA-2153-1}
- linux-2.6 2.6.37-2
+ [squeeze] - linux-2.6 2.6.32-31
CVE-2011-0519 (SQL injection vulnerability in gallery.php in Gallarific PHP
Photo ...)
NOT-FOR-US: Gallarific
CVE-2011-0518 (Directory traversal vulnerability in core/lib/router.php in
LotusCMS ...)
@@ -3124,6 +3129,7 @@
RESERVED
{DSA-2153-1}
- linux-2.6 2.6.37-1
+ [squeeze] - linux-2.6 2.6.32-31
CVE-2010-4655 [heap contents leak for CAP_NET_ADMIN via ethtool ioctl]
RESERVED
- linux-2.6 2.6.37-1
@@ -3917,6 +3923,7 @@
CVE-2010-4565 (The bcm_connect function in net/can/bcm.c (aka the Broadcast
Manager) ...)
{DSA-2153-1}
- linux-2.6 2.6.37-1
+ [squeeze] - linux-2.6 2.6.32-31
CVE-2010-4564
RESERVED
CVE-2010-4563
@@ -5407,10 +5414,13 @@
- linux-2.6 2.6.32-24 (low)
CVE-2010-4077 (The ntty_ioctl_tiocgicount function in drivers/char/nozomi.c in
the ...)
- linux-2.6 2.6.37-1 (low)
+ [squeeze] - linux-2.6 2.6.32-31
CVE-2010-4076 (The rs_ioctl function in drivers/char/amiserial.c in the Linux
kernel ...)
- linux-2.6 2.6.37-1 (low)
+ [squeeze] - linux-2.6 2.6.32-31
CVE-2010-4075 (The uart_get_count function in drivers/serial/serial_core.c in
the ...)
- linux-2.6 2.6.37-1 (low)
+ [squeeze] - linux-2.6 2.6.32-31
CVE-2010-4074 (The USB subsystem in the Linux kernel before 2.6.36-rc5 does not
...)
{DSA-2126-1}
- linux-2.6 2.6.32-24 (low)
@@ -5929,6 +5939,7 @@
REJECTED
CVE-2010-3865 (Integer overflow in the rds_rdma_pages function in
net/rds/rdma.c in ...)
- linux-2.6 2.6.37-1
+ [squeeze] - linux-2.6 2.6.32-31
[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.30)
CVE-2010-3864 (Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f
through ...)
{DSA-2125-1}
@@ -8537,6 +8548,8 @@
- zope-ldapuserfolder <removed> (high; bug #593466)
CVE-2010-2943 (The xfs implementation in the Linux kernel before 2.6.35 does
not look ...)
- linux-2.6 2.6.37-1
+ [squeeze] - linux-2.6 2.6.32-31
+ [lenny] - linux-2.6 <not-affected> (test case fails on 2.6.26)
CVE-2010-2942 (The actions implementation in the network queueing functionality
in ...)
- linux-2.6 2.6.32-25
[lenny] - linux-2.6 2.6.26-25