[Secure-testing-commits] r38354 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Dec 16 13:24:58 UTC 2015
Author: jmm
Date: 2015-12-16 13:24:58 +0000 (Wed, 16 Dec 2015)
New Revision: 38354
Modified:
data/CVE/list
Log:
CVE-2015-856[78] not in wheezy/squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-16 13:15:59 UTC (rev 38353)
+++ data/CVE/list 2015-12-16 13:24:58 UTC (rev 38354)
@@ -33,16 +33,19 @@
NOTE: https://lkml.org/lkml/2015/12/14/252
CVE-2015-8568 [net: vmxnet3: host memory leakage -- did not free the transmit & receive buffers while deactivating]
- qemu <unfixed>
- - qemu-kvm <removed>
+ [wheezy] - qemu <not-affected> (Vulnerable code not present)
+ [squeeze] - qemu <not-affected> (Vulnerable code not present)
+ - qemu-kvm <not-affected> (Vulnerable code not present)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2015-12/msg02299.html
NOTE: http://www.openwall.com/lists/oss-security/2015/12/15/4
TODO: check
CVE-2015-8567 [net: vmxnet3: host memory leakage -- does not check if the device is active before activating it]
- qemu <unfixed>
- - qemu-kvm <removed>
+ [wheezy] - qemu <not-affected> (Vulnerable code not present)
+ [squeeze] - qemu <not-affected> (Vulnerable code not present)
+ - qemu-kvm <not-affected> (Vulnerable code not present)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2015-12/msg02299.html
NOTE: http://www.openwall.com/lists/oss-security/2015/12/15/4
- TODO: check
CVE-2015-8559 [knife bootstrap leaks validator privkey into system logs]
RESERVED
- chef <unfixed>
More information about the Secure-testing-commits
mailing list