[Secure-testing-commits] r27406 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2014-06-23 17:46:45 +0000 (Mon, 23 Jun 2014)
New Revision: 27406

Modified:
   data/CVE/list
Log:
Add qemu issue, with TODO item

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-06-23 10:59:31 UTC (rev 27405)
+++ data/CVE/list	2014-06-23 17:46:45 UTC (rev 27406)
@@ -2190,8 +2190,12 @@
 	RESERVED
 CVE-2014-3472
 	RESERVED
-CVE-2014-3471
+CVE-2014-3471 [hw: pci: use after free triggered via guest]
 	RESERVED
+	- qemu <unfixed>
+	- qemu-kvm <removed>
+	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2014-06/msg05283.html
+	TODO: check
 CVE-2014-3470 (The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL ...)
 	{DSA-2950-1}
 	- openssl 1.0.1h-1 (bug #750665)