[Secure-testing-commits] r38116 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Dec 5 08:50:56 UTC 2015 

Author: carnil
Date: 2015-12-05 08:50:56 +0000 (Sat, 05 Dec 2015)
New Revision: 38116

Modified:
   data/CVE/list
Log:
Linux fixed in unstable for some CVEs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-12-05 07:58:43 UTC (rev 38115)
+++ data/CVE/list	2015-12-05 08:50:56 UTC (rev 38116)
@@ -267,7 +267,7 @@
 	RESERVED
 CVE-2015-8374 [information disclosure after file truncate on BTRFS]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.2.6-2
 	- linux-2.6 <removed>
 	NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0305cd5f7fca85dae392b9ba85b116896eb7c1c7 (v4.4-rc1)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/11/27/2
@@ -832,7 +832,7 @@
 	RESERVED
 CVE-2013-7446 [Use after free in ep_remove_wait_queue]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.2.6-2
 	- linux-2.6 <removed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1273845
 	NOTE: https://groups.google.com/forum/#!topic/syzkaller/3twDUI4Cpm8
@@ -971,7 +971,7 @@
 CVE-2015-8090 (The Web Server component in TIBCO LogLogic Unity before 1.1.1 allows ...)
 	TODO: check
 CVE-2015-8104 (The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x ...)
-	- linux <unfixed>
+	- linux 4.2.6-2
 	- linux-2.6 <removed>
 	- xen <unfixed>
 	[squeeze] - linux-2.6 <no-dsa> (KVM not supported in Squeeze LTS)
@@ -1752,7 +1752,7 @@
 	TODO: check
 CVE-2015-7833 (The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 ...)
 	{DSA-3396-1}
-	- linux 4.2.6-1
+	- linux 4.2.6-2
 	- linux-2.6 <removed>
 	NOTE: http://git.linuxtv.org/cgit.cgi/media_tree.git/commit?id=588afcc1c0e45358159090d95bf7b246fb67565
 	NOTE: http://git.linuxtv.org/cgit.cgi/media_tree.git/commit?id=fa52bd506f274b7619955917abfde355e3d19ff
@@ -1873,7 +1873,7 @@
 CVE-2015-7800
 	RESERVED
 CVE-2015-7799 (The slhc_init function in drivers/net/slip/slhc.c in the Linux kernel ...)
-	- linux <unfixed>
+	- linux 4.2.6-2
 	[jessie] - linux <no-dsa> (Minor issue)
 	[wheezy] - linux <no-dsa> (Minor issue)
 	- linux-2.6 <removed>

More information about the Secure-testing-commits mailing list