[Secure-testing-commits] r35834 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Aug 2 06:03:38 UTC 2015
Author: carnil
Date: 2015-08-02 06:03:38 +0000 (Sun, 02 Aug 2015)
New Revision: 35834
Modified:
data/CVE/list
Log:
Add another linux issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-02 06:03:27 UTC (rev 35833)
+++ data/CVE/list 2015-08-02 06:03:38 UTC (rev 35834)
@@ -1,3 +1,10 @@
+CVE-2015-XXXX [Integer overflow in SCSI generic driver]
+ - linux <unfixed>
+ - linux-2.6 <removed>
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/08/01/6
+ NOTE: Probably introduced in https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=10db10d144c0248f285242f79daf6b9de6b00a62 (v2.6.28-rc1)
+ NOTE: Fixed by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=451a2886b6bf90e2fb378f7c46c655450fb96e81 (v4.1-rc1)
+ NOTE: Fixed by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fdc81f45e9f57858da6351836507fbcf1b7583ee (v4.1-rc1)
CVE-2015-XXXX [Use-after-free in path lookup]
- linux 4.0.4-1
[wheezy] - linux <not-affected> (Introduced in v3.11-rc1)
More information about the Secure-testing-commits
mailing list