[Secure-testing-commits] r29233 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Oct 3 10:38:53 UTC 2014
Author: carnil
Date: 2014-10-03 10:38:53 +0000 (Fri, 03 Oct 2014)
New Revision: 29233
Modified:
data/CVE/list
Log:
Add information for CVE-2014-0182/qemu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-10-03 09:14:10 UTC (rev 29232)
+++ data/CVE/list 2014-10-03 10:38:53 UTC (rev 29233)
@@ -18463,10 +18463,12 @@
NOT-FOR-US: Katello
CVE-2014-0182 [virtio: out-of-bounds buffer write on state load with invalid config_len]
RESERVED
- - qemu <unfixed>
+ - qemu 2.1+dfsg-1
- qemu-kvm <removed>
[squeeze] - qemu <end-of-life> (Unsupported in squeeze-lts)
[squeeze] - qemu-kvm <end-of-life> (Unsupported in squeeze-lts)
+ NOTE: Fix: http://git.qemu.org/?p=qemu.git;a=commit;h=a890a2f9137ac3cf5b607649e66a6f3a5512d8dc
+ NOTE: Regression fix needed: http://git.qemu.org/?p=qemu.git;a=commit;h=2f5732e9648fcddc8759a8fd25c0b41a38352be6
CVE-2014-0181 (The Netlink implementation in the Linux kernel through 3.14.1 does not ...)
- linux 3.14.9-1 (bug #746738)
- linux-2.6 <removed>
More information about the Secure-testing-commits
mailing list