[Secure-testing-commits] r25436 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 31 06:30:22 UTC 2014
Author: carnil
Date: 2014-01-31 06:30:22 +0000 (Fri, 31 Jan 2014)
New Revision: 25436
Modified:
data/CVE/list
Log:
Add linux issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-31 06:06:44 UTC (rev 25435)
+++ data/CVE/list 2014-01-31 06:30:22 UTC (rev 25436)
@@ -4503,8 +4503,13 @@
RESERVED
CVE-2014-0039
RESERVED
-CVE-2014-0038
+CVE-2014-0038 [arbitrary write with CONFIG_X86_X32]
RESERVED
+ - linux <unfixed>
+ - linux-2.6 <not-affected> (Introduced in 3.4+)
+ NOTE: introduced by http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/net/compat.c?id=ee4fa23c4bfcc635d077a9633d405610de45bc70
+ NOTE: "unfixed", but Debian does not enable CONFIG_X86_X32
+ TODO: double check
CVE-2014-0037
RESERVED
CVE-2014-0036
More information about the Secure-testing-commits
mailing list