[Secure-testing-commits] r24248 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Fri Nov 1 18:20:58 UTC 2013
Author: carnil
Date: 2013-11-01 18:20:57 +0000 (Fri, 01 Nov 2013)
New Revision: 24248
Modified:
data/CVE/list
Log:
Add fixed version in linux for two CVE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-11-01 16:22:38 UTC (rev 24247)
+++ data/CVE/list 2013-11-01 18:20:57 UTC (rev 24248)
@@ -4549,7 +4549,7 @@
NOTE: Patch: http://icedtea.classpath.org/hg/release/icedtea-web-1.4/rev/82e007d8b05a
CVE-2013-4348 [net: deadloop path in skb_flow_dissect()]
RESERVED
- - linux <unfixed>
+ - linux 3.11.6-2
- linux-2.6 <removed>
TODO: check linux-2.6
CVE-2013-4347 [Uses poor PRNG]
@@ -4710,7 +4710,7 @@
[wheezy] - linux <not-affected> (Not exploitable by unprivileged users in 3.2)
- linux-2.6 <not-affected> (Not exploitable by unprivileged users in 2.6.32)
CVE-2013-4299 (Interpretation conflict in drivers/md/dm-snap-persistent.c in the ...)
- - linux-2.6 <removed>
+ - linux-2.6 3.11.6-2
- linux <unfixed>
NOTE: upstream commit: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e9c6a182649f4259db704ae15a91ac820e63b0ca
CVE-2013-4297 (The virFileNBDDeviceAssociate function in util/virfile.c in libvirt ...)
More information about the Secure-testing-commits
mailing list