[Secure-testing-commits] r36051 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Aug 14 08:14:03 UTC 2015
Author: carnil
Date: 2015-08-14 08:14:03 +0000 (Fri, 14 Aug 2015)
New Revision: 36051
Modified:
data/CVE/list
Log:
Mark CVE-2015-5160/libvirt as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-14 07:22:43 UTC (rev 36050)
+++ data/CVE/list 2015-08-14 08:14:03 UTC (rev 36051)
@@ -2082,6 +2082,8 @@
CVE-2015-5160 [Ceph id/key leaked in the process list]
RESERVED
- libvirt <unfixed>
+ [jessie] - libvirt <no-dsa> (Minor issue; needs changes first in QEMU)
+ [wheezy] - libvirt <no-dsa> (Minor issue; needs changes first in QEMU)
[squeeze] - libvirt <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://www.redhat.com/archives/libvir-list/2011-November/msg00853.html
NOTE: Needs changes in QEMU for passing passwords. Affects at least iSCSI and rbd/ceph.
More information about the Secure-testing-commits
mailing list