Re: CVE-2009-3623

To: debian-security-tracker@lists.debian.org
Subject: Re: CVE-2009-3623
From: Michael Gilbert <michael.s.gilbert@gmail.com>
Date: Mon, 2 Nov 2009 11:09:29 -0500
Message-id: <[🔎] 20091102110929.4aad4298.michael.s.gilbert@gmail.com>
In-reply-to: <[🔎] 1257159851.19022.11.camel@localhost>
References: <[🔎] 1257159851.19022.11.camel@localhost>

On Mon, 02 Nov 2009 12:04:11 +0100, Laurent Bonnaud wrote:
> Hi,
> 
> I am looking at this security issue:
> 
>   http://security-tracker.debian.org/tracker/CVE-2009-3623
> 
> where the sid version is marked as vulnerable.
> 
> According to the description, it should be fixed in linux 2.6.31.2 and
> beyond.  Since version 2.6.31-1 in sid is based on 2.6.31.5:
> 
> http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.31-1/changelog
> 
> this security hole should be fixed in sid.  Could somebody fix this ?

fixed.  note that cve descriptions are not always trustworthy, but in
this case, i've checked, and the text is correct.  the flaw is indeed
fixed in 2.6.31.2, which is included in sid's 2.6.31-1.

thanks for spotting this!

mike

Reply to:

References:
- CVE-2009-3623
  - From: Laurent Bonnaud <Laurent.Bonnaud@inpg.fr>

Prev by Date: CVE-2009-3623
Next by Date: CVE-2009-3638
Previous by thread: CVE-2009-3623
Next by thread: CVE-2009-3638
Index(es):
- Date
- Thread