[Secure-testing-commits] r26571 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Apr 16 04:35:35 UTC 2014 

Author: carnil
Date: 2014-04-16 04:35:16 +0000 (Wed, 16 Apr 2014)
New Revision: 26571

Modified:
   data/CVE/list
Log:
Four linux issues fixed in 3.13.10-1 upload to unstable

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-04-16 04:29:12 UTC (rev 26570)
+++ data/CVE/list	2014-04-16 04:35:16 UTC (rev 26571)
@@ -521,7 +521,7 @@
 	- zendframework <unfixed> (bug #743175)
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-01
 CVE-2014-2678 (The rds_iw_laddr_check function in net/rds/iw.c in the Linux kernel ...)
-	- linux <unfixed>
+	- linux 3.13.10-1
 	- linux-2.6 <removed>
 	NOTE: https://lkml.org/lkml/2014/3/29/188
 CVE-2014-2673 (The arch_dup_task_struct function in the Transactional Memory (TM) ...)
@@ -966,7 +966,7 @@
 	[wheezy] - readline6 <no-dsa> (Minor issue)
 	[squeeze] - readline6 <no-dsa> (Minor issue)
 CVE-2014-2523 (net/netfilter/nf_conntrack_proto_dccp.c in the Linux kernel through ...)
-	- linux 3.13-1
+	- linux 3.13.10-1
 	- linux-2.6 <removed>
 	NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/nf_conntrack_proto_dccp.c?id=b22f5126a24b3b2f15448c3f2a254fc10cbc2b92
 CVE-2014-2522 [flaw in Windows SSL backend]
@@ -7470,7 +7470,7 @@
 CVE-2014-0078
 	RESERVED
 CVE-2014-0077 (drivers/vhost/net.c in the Linux kernel before 3.13.10, when mergeable ...)
-	- linux <unfixed>
+	- linux 3.13.10-1
 	- linux-2.6 <not-affected> (Vulnerable code not present)
 	NOTE: seems introduced in https://github.com/torvalds/linux/commit/8dd014adfea6f173c1ef6378f7e5e7924866c923
 	NOTE: qemu is built with support for vhost_net, module loaded post-wheezy when linux < 3.4 but root:root 0600
@@ -7563,7 +7563,7 @@
 	RESERVED
 	- neutron 2013.2.2-4 (bug #742800)
 CVE-2014-0055 (The get_rx_bufs function in drivers/vhost/net.c in the vhost-net ...)
-	- linux <unfixed>
+	- linux 3.13.10-1
 	- linux-2.6 <not-affected> (Vulnerable code not present)
 	TODO: check
 	NOTE: introduced in https://github.com/torvalds/linux/commit/8dd014adfea6f173c1ef6378f7e5e7924866c923

More information about the Secure-testing-commits mailing list