add missing CVE IDs from 2.6.38.3 stable release

svn path=/dists/sid/linux-2.6/; revision=17245
2011-04-22 20:38:06 +00:00 · 2011-04-22 20:38:06 +00:00 · 79b070cc68
parent e13c1cd96d
commit 79b070cc68
1 changed files with 6 additions and 0 deletions
--- a/debian/changelog
+++ b/debian/changelog
@ -34,6 +34,12 @@ linux-2.6 (2.6.38-4) UNRELEASED; urgency=low
    - ext4: fix credits computing for indirect mapped files
    - nfsd: fix auth_domain reference leak on nlm operations
    - nfsd4: fix oops on lock failure
+    - char/tpm: Fix unitialized usage of data buffer (CVE-2011-1160)
+    - ipv6: netfilter: ip6_tables: fix infoleak to userspace (CVE-2011-1172)
+    - econet: 4 byte infoleak to the network (CVE-2011-1173)
+    - sound/oss: remove offset from load_patch callbacks
+      (CVE-2011-1476, CVE-2011-1477)
+    - inotify: fix double free/corruption of stuct user (CVE-2011-1479)
    For the complete list of changes, see:
     http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.3
  * Add stable 2.6.38.4, including: