[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#564114: [Secure-testing-team] e1000: Potential packet filtering bypass



On 2010-01-08, Ben Hutchings <ben@decadent.org.uk> wrote:
>
> --=-WIE5Fb+ooipbqCR7Kfs7
> Content-Type: text/plain; charset="UTF-8"
> Content-Transfer-Encoding: quoted-printable
>
> On Thu, 2010-01-07 at 22:11 -0500, Michael Gilbert wrote:
>> On Thu, 07 Jan 2010 19:27:02 +0000 Ben Hutchings wrote:
>>=20
>> > Julien Cristau pointed out the thread
>> > <http://thread.gmane.org/gmane.comp.security.oss.general/2457>.  It
>> > appears that Red Hat allocated CVE-2009-4536 for this and CVE-2009-4538
>> > for a similar bug in e1000e.
>>=20
>> do you follow kernel-sec [0]?  i entered these CVEs when they were
>> first disclosed over a week ago.
>
> I wasn't aware of it!
>
>> mike
>>=20
>> [0] http://svn.debian.org/wsvn/kernel-sec
>
> I will check this out and make sure to refer to it in future.
>
> But why don't you (or others in that group) file bug reports?

Basically because it's too much overhead and the BTS is already on the
edge of being useful for linux-2.6

Cheers,
        Moritz


Reply to: