Re: [SECURITY] [DSA 922-1] New Linux 2.6.8 packages fix several vulnerabilities
Hi! Am Mittwoch, den 14.12.2005, 23:34 +0100 schrieb Martin Schulze: [...] Debian Security Advisory DSA 922-1 [EMAIL PROTECTED] [...] CVE IDs: CVE-2004-2302 CVE-2005-0756 CVE-2005-0757 CVE-2005-1265 CVE-2005-1761 CVE-2005-1762 CVE-2005-1763 CVE-2005-1765 CVE-2005-1767 CVE-2005-2456 CVE-2005-2458 CVE-2005-2459 CVE-2005-2548 CVE-2005-2801 CVE-2005-2872 CVE-2005-3105 CVE-2005-3106 CVE-2005-3107 CVE-2005-3108 CVE-2005-3109 CVE-2005-3110 CVE-2005-3271 CVE-2005-3272 CVE-2005-3273 CVE-2005-3274 CVE-2005-3275 CVE-2005-3276 Do you know if these vulnerabilities are resolved in the current linux-source-2.6.12-10? Could you please point me to a location, where I can find out if all these CVEs have been addressed in the current kernel sources? Thanks Hansi -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [SECURITY] [DSA 922-1] New Linux 2.6.8 packages fix several vulnerabilities
On Tue, 2005-12-20 at 00:07 +0100, Johann Glaser wrote: Hi! Am Mittwoch, den 14.12.2005, 23:34 +0100 schrieb Martin Schulze: [...] Debian Security Advisory DSA 922-1 [EMAIL PROTECTED] [...] CVE IDs: CVE-2004-2302 CVE-2005-0756 CVE-2005-0757 CVE-2005-1265 CVE-2005-1761 CVE-2005-1762 CVE-2005-1763 CVE-2005-1765 CVE-2005-1767 CVE-2005-2456 CVE-2005-2458 CVE-2005-2459 CVE-2005-2548 CVE-2005-2801 CVE-2005-2872 CVE-2005-3105 CVE-2005-3106 CVE-2005-3107 CVE-2005-3108 CVE-2005-3109 CVE-2005-3110 CVE-2005-3271 CVE-2005-3272 CVE-2005-3273 CVE-2005-3274 CVE-2005-3275 CVE-2005-3276 Do you know if these vulnerabilities are resolved in the current linux-source-2.6.12-10? Could you please point me to a location, where I can find out if all these CVEs have been addressed in the current kernel sources? svn://svn.debian.org/svn/kernel/patch-tracking -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [SECURITY] [DSA 922-1] New Linux 2.6.8 packages fix several vulnerabilities
* Johann Glaser: Do you know if these vulnerabilities are resolved in the current linux-source-2.6.12-10? If you use kernel packages derived from the linux-2.6 source package, you can use debsecan to list known kernel vulnerabilities. debsecan is part of unstable (make sure you get version 0.2, version 0.1 is buggy and won't give you the desired information), or you can download the script from: http://www.enyo.de/fw/software/debsecan/ The overview at http://idssi.enyo.de/tracker/status/release/testing could be helpful as well. All this is still somewhat experimental, but I hope to make a real announcement soon. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [SECURITY] [DSA 922-1] New Linux 2.6.8 packages fix several vulnerabilities
Hi. FYI, there seems to be a contradiction between message subject and package in contents : Le mercredi 14 décembre 2005 à 23:34 +0100, Martin Schulze a écrit : Package: kernel-source-2.4.27 Best regards, -- Olivier BERGER [EMAIL PROTECTED] Ingénieur Recherche - Dept INF INT Evry (http://www.int-evry.fr) OpenPGP-Id: 1024D/6B829EEC
Re: [SECURITY] [DSA 922-1] New Linux 2.6.8 packages fix several vulnerabilities
On 12/15/05, Martin Schulze [EMAIL PROTECTED] wrote: Package: kernel-source-2.4.27 Perhaps this should be kernel-source-2.6.8? -- GPG Key ID: 0xD6655C18 Linux Just Simply Rocks! http://deathwing.penarmac.com/