Author: jmm-guest Date: Thu Jan 5 11:30:55 2006 New Revision: 5274 Modified: patch-tracking/CVE-2004-2013 Log: CVE-2004-2013 resolved wrt Sarge
Modified: patch-tracking/CVE-2004-2013 ============================================================================== --- patch-tracking/CVE-2004-2013 (original) +++ patch-tracking/CVE-2004-2013 Thu Jan 5 11:30:55 2006 @@ -11,12 +11,15 @@ code via an optlen value of -1, which causes kmalloc to allocate 0 bytes of memory. Notes: + jmm> http://archives.neohapsis.com/archives/bugtraq/2004-05/0091.html + jmm> The vulnerable socket option was removed entirely in 2.4.26 and 2.6.*, + jmm> Woody could be affected, though Bugs: -upstream: -linux-2.6: -2.6.8-sarge-security: -2.4.27-sarge-security: -2.6.8: +upstream: released (2.4.26) +linux-2.6: N/A +2.6.8-sarge-security: N/A +2.4.27-sarge-security: N/A +2.6.8: N/A 2.4.19-woody-security: 2.4.18-woody-security: 2.4.17-woody-security: _______________________________________________ Kernel-svn-changes mailing list Kernel-svn-changes@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/kernel-svn-changes