[Secure-testing-commits] r30968 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 24 10:27:52 UTC 2014
Author: carnil
Date: 2014-12-24 10:27:52 +0000 (Wed, 24 Dec 2014)
New Revision: 30968
Modified:
data/CVE/list
Log:
Update information for CVE-2014-8135/libvirt
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-24 10:24:34 UTC (rev 30967)
+++ data/CVE/list 2014-12-24 10:27:52 UTC (rev 30968)
@@ -4408,7 +4408,10 @@
NOTE: Introduced in http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=abf75aea247e (v1.1.0-rc1)
CVE-2014-8135 (The storageVolUpload function in storage/storage_driver.c in libvirt ...)
- libvirt <unfixed> (bug #773855)
+ [wheezy] - libvirt <not-affected> (Vulnerable code introduced later)
+ [squeeze] - libvirt <not-affected> (Vulnerable code introduced later)
NOTE: Upstream fix: http://libvirt.org/git/?p=libvirt.git;a=commit;h=87b9437f8951f9d24f9a85c6bbfff0e54df8c984 (v1.2.11-rc1)
+ NOTE: Introduced by http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=4a85bf3e2fa703fdc14e8c49d5017ef04832a1d7 (v1.2.8-rc1)
CVE-2014-8134 (The paravirt_ops_setup function in arch/x86/kernel/kvm.c in the Linux ...)
- linux <unfixed>
- linux-2.6 <removed>
More information about the Secure-testing-commits
mailing list