[Secure-testing-commits] r38616 - data/CVE

Ben Hutchings benh at moszumanska.debian.org
Thu Dec 31 02:38:31 UTC 2015


Author: benh
Date: 2015-12-31 02:38:31 +0000 (Thu, 31 Dec 2015)
New Revision: 38616

Modified:
   data/CVE/list
Log:
Add details of CVE-2015-7550

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-12-31 01:24:34 UTC (rev 38615)
+++ data/CVE/list	2015-12-31 02:38:31 UTC (rev 38616)
@@ -6033,8 +6033,10 @@
 	- ruby2.2 <unfixed> (bug #796551)
 	NOTE: https://www.ruby-lang.org/en/news/2015/12/16/unsafe-tainted-string-usage-in-fiddle-and-dl-cve-2015-7551/
 	TODO: check correctness for CVE-2009-5147/CVE-2015-7551 record since affects multiple ruby versions
-CVE-2015-7550
-	RESERVED
+CVE-2015-7550 [Linux keyring subsystem race leads to null dereference]
+	- linux <unfixed>
+	- linux-2.6 <removed>
+	NOTE: https://git.kernel.org/linus/b4a1b4f5047e4f54e194681125c74c0aa64d637d
 CVE-2015-7549 [pci: msi-x: null pointer dereference issue]
 	RESERVED
 	- qemu 1:2.5+dfsg-1 (bug #808131)




More information about the Secure-testing-commits mailing list