[Secure-testing-commits] r29634 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Oct 25 09:05:08 UTC 2014
Author: carnil
Date: 2014-10-25 09:05:08 +0000 (Sat, 25 Oct 2014)
New Revision: 29634
Modified:
data/CVE/list
Log:
Add note for CVE-2014-3610/linux about mitigation of issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-10-25 09:01:26 UTC (rev 29633)
+++ data/CVE/list 2014-10-25 09:05:08 UTC (rev 29634)
@@ -11229,6 +11229,7 @@
- linux-2.6 <removed>
NOTE: https://git.kernel.org/cgit/virt/kvm/kvm.git/commit/?id=854e8bb1aa06c578c2c9145fa6bfe3680ef63b23
NOTE: https://git.kernel.org/cgit/virt/kvm/kvm.git/commit/?id=8b3c3104c3f4f706e99365c3e0d2aa61b95f969f
+ NOTE: Enabling CONFIG_PARAVIRT when building the kernel mitigates this issue.
CVE-2014-3609 (HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 ...)
{DSA-3014-1 DLA-45-1}
- squid <unfixed>
More information about the Secure-testing-commits
mailing list