[Secure-testing-commits] r33428 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Wed Apr 8 12:53:43 UTC 2015 

Author: jmm
Date: 2015-04-08 12:53:43 +0000 (Wed, 08 Apr 2015)
New Revision: 33428

Modified:
   data/CVE/list
Log:
linux fixed in sid


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-04-08 05:29:52 UTC (rev 33427)
+++ data/CVE/list	2015-04-08 12:53:43 UTC (rev 33428)
@@ -260,7 +260,7 @@
 	NOTE: https://lists.freebsd.org/pipermail/freebsd-net/2015-April/041934.html
 CVE-2015-2922 [IPv6 Hop limit lowering via RA messages]
 	RESERVED
-	- linux <unfixed>
+	- linux 3.16.7-ckt9-1
 	- linux-2.6 <removed>
 	NOTE: Upstream commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6fd99094de2b83d1d4c8457f2c83483b2828e75a
 CVE-2015-2829
@@ -303,7 +303,7 @@
 	NOT-FOR-US: SAP NetWeaver Portal
 CVE-2015-2830 [Linux mishandles int80 fork from 64-bit tasks]
 	RESERVED
-	- linux <unfixed>
+	- linux 3.16.7-ckt9-1
 	- linux-2.6 <removed>
 	NOTE: Upstream commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=956421fbb74c3a6261903f3836c0740187cf038b (v4.0-rc3)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/04/02/1
@@ -1362,7 +1362,7 @@
 	NOT-FOR-US: GoAhead Web Server
 CVE-2014-9710 [btrfs: non-atomic xattr replace operation]
 	RESERVED
-	- linux <unfixed>
+	- linux 3.16.7-ckt9-1
 	- linux-2.6 <removed>
 	NOTE: Upstream commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5f5bc6b1e2d5a6f827bc860ef2dc5b6f365d1339 (v3.19-rc1)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/03/24/11
@@ -1541,7 +1541,7 @@
 	- flightgear 3.0.0-5 (bug #780712)
 CVE-2015-2666 [execution in the early microcode loader]
 	RESERVED
-	- linux <unfixed>
+	- linux 3.16.7-ckt9-1
 	[wheezy] - linux <not-affected> (Introduced in 3.9)
 	- linux-2.6 <not-affected> (Introduced in 3.9)
 	NOTE: Introduced by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ec400ddeff200b068ddc6c70f7321f49ecf32ed5 (v3.9-rc1)
@@ -2123,7 +2123,7 @@
 	[squeeze] - xen <end-of-life> (Not supported in Squeeze LTS)
 	NOTE: http://xenbits.xen.org/xsa/advisory-123.html
 CVE-2015-2150 (Xen 3.3.x through 4.5.x and the Linux kernel through 3.19.1 do not ...)
-	- linux <unfixed>
+	- linux 3.16.7-ckt9-1
 	- linux-2.6 <not-affected> (xen-pciback introduced in 3.1)
 	NOTE: http://xenbits.xen.org/xsa/advisory-120.html
 CVE-2015-2149 (Multiple cross-site scripting (XSS) vulnerabilities in the administrative ...)
@@ -2759,14 +2759,14 @@
 	NOT-FOR-US: Google Doc Embedder plugin for WordPress
 CVE-2015-2042 [incorrect data type in rds_sysctl_rds_table]
 	RESERVED
-	- linux <unfixed>
+	- linux 3.16.7-ckt9-1
 	- linux-2.6 <removed>
 	[squeeze] - linux-2.6 <no-dsa> (Minor issue)
 	NOTE: Upstream commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=db27ebb111e9f69efece08e4cb6a34ff980f8896 (v3.19)
 	NOTE: (earliest) introduced in https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=3e5048495c8569bfdd552750e0315973c61e7c93 (v2.6.30-rc1)
 CVE-2015-2041 [incorrect data type in llc2_timeout_table]
 	RESERVED
-	- linux <unfixed>
+	- linux 3.16.7-ckt9-1
 	- linux-2.6 <removed>
 	[squeeze] - linux-2.6 <no-dsa> (Minor issue)
 	NOTE: Upstream commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6b8d9117ccb4f81b1244aafa7bc70ef8fa45fc49 (v3.19-rc7)
@@ -9451,7 +9451,7 @@
 	RESERVED
 CVE-2015-0275 [ext4: fallocate zero range page size > block size BUG()]
 	RESERVED
-	- linux <unfixed>
+	- linux 3.16.7-ckt9-1
 	[wheezy] - linux <not-affected> (Introduced in v3.15)
 	- linux-2.6 <not-affected> (Introduced in v3.15)
 	NOTE: Proposed upstream patch: http://www.spinics.net/lists/linux-ext4/msg47193.html
@@ -12308,7 +12308,7 @@
 	NOTE: Upstream commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=db29a9508a9246e77087c5531e45b2c88ec6988b (v3.18-rc1)
 	NOTE: http://www.spinics.net/lists/netfilter-devel/msg33430.html
 CVE-2014-8159 (The InfiniBand (IB) implementation in the Linux kernel package before ...)
-	- linux <unfixed>
+	- linux 3.16.7-ckt9-1
 	- linux-2.6 <removed>
 CVE-2014-8158 (Multiple stack-based buffer overflows in jpc_qmfb.c in JasPer 1.900.1 ...)
 	{DSA-3138-1 DLA-138-1}

More information about the Secure-testing-commits mailing list