Bug#746949: CVE-2014-3000: TCP reassembly vulnerability

[Robert Millan]

Package: kfreebsd-10
Version: 10.0-4
Severity: grave
Tags: security fixed-upstream

http://www.freebsd.org/security/advisories/FreeBSD-SA-14:08.tcp.asc

Affects 10.0, 9.2 and 8.3

Possibly 9.0 and HEAD as well (haven't checked yet).

--
Robert Millan


--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Processed: Re: Bug#746949: CVE-2014-3000: TCP reassembly vulnerability

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

 clone 746949 -1 -2 -3 -4
Bug #746949 [kfreebsd-10] CVE-2014-3000: TCP reassembly vulnerability
Bug 746949 cloned as bugs 746951-746954
 # On 04/05/14 11:46, Robert Millan wrote:
 #  Affects 10.0, 9.2 and 8.3
 reassign -1 kfreebsd-9 9.2
Bug #746951 [kfreebsd-10] CVE-2014-3000: TCP reassembly vulnerability
Bug reassigned from package 'kfreebsd-10' to 'kfreebsd-9'.
No longer marked as found in versions 10.0-4.
Ignoring request to alter fixed versions of bug #746951 to the same values 
previously set
Bug #746951 [kfreebsd-9] CVE-2014-3000: TCP reassembly vulnerability
There is no source info for the package 'kfreebsd-9' at version '9.2' with 
architecture ''
Unable to make a source version for version '9.2'
Marked as found in versions 9.2.
 reassign -2 kfreebsd-8 8.3
Bug #746952 [kfreebsd-10] CVE-2014-3000: TCP reassembly vulnerability
Bug reassigned from package 'kfreebsd-10' to 'kfreebsd-8'.
No longer marked as found in versions 10.0-4.
Ignoring request to alter fixed versions of bug #746952 to the same values 
previously set
Bug #746952 [kfreebsd-8] CVE-2014-3000: TCP reassembly vulnerability
There is no source info for the package 'kfreebsd-8' at version '8.3' with 
architecture ''
Unable to make a source version for version '8.3'
Marked as found in versions 8.3.
 # Possibly 9.0 and HEAD as well (haven't checked yet).
 # Yes, it does. However 9.0 wasn't included in the advisory because it is not
 # supported upstream.
 reassign -3 kfreebsd-9 9.0
Bug #746953 [kfreebsd-10] CVE-2014-3000: TCP reassembly vulnerability
Bug reassigned from package 'kfreebsd-10' to 'kfreebsd-9'.
No longer marked as found in versions 10.0-4.
Ignoring request to alter fixed versions of bug #746953 to the same values 
previously set
Bug #746953 [kfreebsd-9] CVE-2014-3000: TCP reassembly vulnerability
There is no source info for the package 'kfreebsd-9' at version '9.0' with 
architecture ''
Unable to make a source version for version '9.0'
Marked as found in versions 9.0.
 reassign -4 kfreebsd-11 11.0~svn264364-1
Bug #746954 [kfreebsd-10] CVE-2014-3000: TCP reassembly vulnerability
Bug reassigned from package 'kfreebsd-10' to 'kfreebsd-11'.
No longer marked as found in versions 10.0-4.
Ignoring request to alter fixed versions of bug #746954 to the same values 
previously set
Bug #746954 [kfreebsd-11] CVE-2014-3000: TCP reassembly vulnerability
There is no source info for the package 'kfreebsd-11' at version 
'11.0~svn264364-1' with architecture ''
Unable to make a source version for version '11.0~svn264364-1'
Marked as found in versions 11.0~svn264364-1.
 thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
746949: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746949
746951: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746951
746952: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746952
746953: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746953
746954: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746954
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems


--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org