[Secure-testing-commits] r21723 - data/CVE

Salvatore Bonaccorso Sat, 23 Mar 2013 08:57:50 -0700

Author: carnil
Date: 2013-03-23 15:57:37 +0000 (Sat, 23 Mar 2013)
New Revision: 21723


Modified:
   data/CVE/list
Log:
some linux issues fixed with 3.2.41-1 upload

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-03-23 07:22:20 UTC (rev 21722)
+++ data/CVE/list       2013-03-23 15:57:37 UTC (rev 21723)
@@ -141,10 +141,10 @@
 CVE-2013-2566 (The RC4 algorithm, as used in the TLS protocol and SSL 
protocol, has ...)
        NOTE: Generic protocol flaw in RC4
 CVE-2012-6549 (The isofs_export_encode_fh function in fs/isofs/export.c in the 
Linux ...)
-       - linux <unfixed> (low)
+       - linux 3.2.41-1 (low)
        - linux-2.6 <removed> (low)
 CVE-2012-6548 (The udf_encode_fh function in fs/udf/namei.c in the Linux 
kernel ...)
-       - linux <unfixed> (low)
+       - linux 3.2.41-1 (low)
        - linux-2.6 <removed> (low)
 CVE-2012-6547 (The __tun_chr_ioctl function in drivers/net/tun.c in the Linux 
kernel ...)
        - linux 3.2.29-1 (low)
@@ -225,13 +225,13 @@
 CVE-2013-2549 (Unspecified vulnerability in Adobe Reader 11.0.02 allows remote 
...)
        NOT-FOR-US: Adobe Reader
 CVE-2013-2548 (The crypto_report_one function in crypto/crypto_user.c in the 
report ...)
-       - linux <unfixed> (low)
+       - linux 3.2.41-1 (low)
        - linux-2.6 <removed> (low)
 CVE-2013-2547 (The crypto_report_one function in crypto/crypto_user.c in the 
report ...)
-       - linux <unfixed> (low)
+       - linux 3.2.41-1 (low)
        - linux-2.6 <removed> (low)
 CVE-2013-2546 (The report API in the crypto user configuration API in the 
Linux ...)
-       - linux <unfixed> (low)
+       - linux 3.2.41-1 (low)
        - linux-2.6 <removed> (low)
 CVE-2013-2545
        RESERVED
@@ -1727,7 +1727,7 @@
        NOTE: https://mariadb.atlassian.net/browse/MDEV-4252
        TODO: Report to BTS
 CVE-2013-1860 (Heap-based buffer overflow in the wdm_in_callback function in 
...)
-       - linux <unfixed>
+       - linux 3.2.41-1
        - linux-2.6 <removed>
 CVE-2013-1859
        RESERVED
@@ -1777,7 +1777,7 @@
 CVE-2013-1849
        RESERVED
 CVE-2013-1848 (fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect 
...)
-       - linux <unfixed>
+       - linux 3.2.41-1
        - linux-2.6 <removed>
        [squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.33)
        NOTE: http://www.openwall.com/lists/oss-security/2013/03/20/8
@@ -1947,7 +1947,7 @@
 CVE-2013-1793
        RESERVED
 CVE-2013-1792 (Race condition in the install_user_keyrings function in ...)
-       - linux <unfixed>
+       - linux 3.2.41-1
        - linux-2.6 <removed>
 CVE-2013-1791
        RESERVED
@@ -2031,7 +2031,7 @@
 CVE-2013-1768
        RESERVED
 CVE-2013-1767 (Use-after-free vulnerability in the shmem_remount_fs function 
in ...)
-       - linux <unfixed>
+       - linux 3.2.41-1
        - linux-2.6 <removed>
 CVE-2013-1766 (libvirt 1.0.2 and earlier sets the group owner to kvm for 
device ...)
        {DSA-2650-1}
@@ -3970,7 +3970,7 @@
 CVE-2013-0915 (The GPU process in Google Chrome OS before 25.0.1364.173 allows 
...)
        NOT-FOR-US: Overflow in Chrome-specific libs
 CVE-2013-0914 (The flush_signal_handlers function in kernel/signal.c in the 
Linux ...)
-       - linux <unfixed> (low)
+       - linux 3.2.41-1 (low)
        - linux-2.6 <removed> (low)
 CVE-2013-0913 (Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c 
in the ...)
        - linux <unfixed>
@@ -5747,7 +5747,7 @@
 CVE-2013-0312 (389 Directory Server before 1.3.0.4 allows remote attackers to 
cause a ...)
        - 389-ds-base 1.3.0.3-1 
 CVE-2013-0311 (The translate_desc function in drivers/vhost/vhost.c in the 
Linux ...)
-       - linux <unfixed>
+       - linux 3.2.41-1
        - linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2013-0310 (The cipso_v4_validate function in net/ipv4/cipso_ipv4.c in the 
Linux ...)
        - linux <unfixed>
@@ -6030,7 +6030,7 @@
        NOTE: Upstream forum post: 
http://www.zoneminder.com/forums/viewtopic.php?f=29&t=20771
 CVE-2013-0231 (The pciback_enable_msi function in the PCI backend driver ...)
        {DSA-2632-1}
-       - linux <unfixed>
+       - linux 3.2.41-1
        - linux-2.6 <removed>
 CVE-2013-0230 (Stack-based buffer overflow in the ExecuteSoapAction function 
in the ...)
        - miniupnpd <unfixed>
@@ -8726,7 +8726,7 @@
        RESERVED
        NOT-FOR-US: ovirt / vsdm
 CVE-2012-5517 (The online_pages function in mm/memory_hotplug.c in the Linux 
kernel ...)
-       - linux <unfixed>
+       - linux 3.2.41-1
        - linux-2.6 <removed>
        [squeeze] - linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2012-5516 (Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, 
when ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r21723 - data/CVE

Reply via email to