[Secure-testing-commits] r33383 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Apr 5 04:38:26 UTC 2015
Author: carnil
Date: 2015-04-05 04:38:26 +0000 (Sun, 05 Apr 2015)
New Revision: 33383
Modified:
data/CVE/list
Log:
Add CVE-2015-2925/linux, left TODO
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-04 09:15:22 UTC (rev 33382)
+++ data/CVE/list 2015-04-05 04:38:26 UTC (rev 33383)
@@ -28,6 +28,12 @@
NOTE: https://nodesecurity.io/advisories/semver_redos
NOTE: https://github.com/npm/npm/releases/tag/v2.7.5
NOTE: libv8 is not covered by security support
+CVE-2015-2925 [It is possible to escape from bind mounts]
+ - linux <unfixed>
+ - linux-2.6 <removed>
+ NOTE: http://permalink.gmane.org/gmane.linux.kernel.containers/29173
+ NOTE: http://permalink.gmane.org/gmane.linux.kernel.containers/29177
+ TODO: check
CVE-2015-2924 [IPv6 Hop limit lowering via RA messages]
- network-manager <unfixed>
CVE-2015-2923 [IPv6 Hop limit lowering via RA messages]
More information about the Secure-testing-commits
mailing list