[Secure-testing-commits] r36250 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-08-21 22:03:39 +0000 (Fri, 21 Aug 2015)
New Revision: 36250

Modified:
   data/CVE/list
Log:
Add CVE-2015-5225/qemu

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-08-21 21:18:25 UTC (rev 36249)
+++ data/CVE/list	2015-08-21 22:03:39 UTC (rev 36250)
@@ -3130,8 +3130,13 @@
 CVE-2015-5226
 	RESERVED
 	NOT-FOR-US: OpenShift3
-CVE-2015-5225
+CVE-2015-5225 [vnc: heap memory corruption issue]
 	RESERVED
+	- qemu <unfixed>
+	[wheezy] - qemu <not-affected> (Vulnerable code introduced in 2.1.0)
+	- qemu-kvm <not-affected> (Vulnerable code introduced in 2.1.0)
+	NOTE: Fix: https://lists.gnu.org/archive/html/qemu-devel/2015-08/msg02495.html
+	NOTE: Introduced by: http://git.qemu.org/?p=qemu.git;a=commit;h=bea60dd7679364493a0d7f5b (v2.1.0-rc0)
 CVE-2015-5224
 	RESERVED
 CVE-2015-5223