On Fri, Jul 14, 2006 at 10:33:15PM +0100, Pedro Celestino dos Reis Rodrigues wrote: > In secury advisory at http://www.debian.org/News/2006/20060713 the two ranges > of kernel versions overlap. Transcription follows: > > It only exists in the Linux kernel 2.6.13 up to versions before 2.6.17.4, and > 2.6.16 before 2.6.16.24. > > Is this correct?
It matches what the CVE says. It sounds like it was fixed in both 2.6.16.24 and 2.6.17.4, so versions between 2.6.13 and 2.6.23 (inclusive) and versions between 2.6.17 and 2.6.17.3 (inclusive) are vulnerable. -- Matt
signature.asc
Description: Digital signature
