Bug#562975: linux-2.6: patch for CVE-2009-3939

To: 562975@bugs.debian.org
Subject: Bug#562975: linux-2.6: patch for CVE-2009-3939
From: Ben Hutchings <ben@decadent.org.uk>
Date: Tue, 29 Dec 2009 22:04:33 +0000
Message-id: <[🔎] 20091229220432.GI20379@decadent.org.uk>
Reply-to: Ben Hutchings <ben@decadent.org.uk>, 562975@bugs.debian.org
In-reply-to: <[🔎] 20091229215725.GH20379@decadent.org.uk>
References: <[🔎] 20091229215725.GH20379@decadent.org.uk>

On Tue, Dec 29, 2009 at 09:57:25PM +0000, Ben Hutchings wrote:
> CVE-2009-3889 should be dealt with at the same time.  That covers the
> dbg_lvl parameter which is also world-writable.

Actually, no Debian release contains a kernel version affected by
CVE-2009-3889.

Ben.

-- 
Ben Hutchings
When you say `I wrote a program that crashed Windows', people just stare ...
and say `Hey, I got those with the system, *for free*'. - Linus Torvalds

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- Bug#562975: linux-2.6: patch for CVE-2009-3939
  - From: Ben Hutchings <ben@decadent.org.uk>

Prev by Date: Processed: found 562975 in 2.6.26-19
Next by Date: Bug#562525: linux-2.6: [s390] Etch proposed-updates kernel boot failure
Previous by thread: Bug#562975: linux-2.6: patch for CVE-2009-3939
Next by thread: Processed: Re: [Debian-eeepc-devel] Bug#562981: rt2860-source: connection drops - debian kernel 2.6.32
Index(es):
- Date
- Thread