[Secure-testing-commits] r38616 - data/CVE
Ben Hutchings
benh at moszumanska.debian.org
Thu Dec 31 02:38:31 UTC 2015
Author: benh
Date: 2015-12-31 02:38:31 +0000 (Thu, 31 Dec 2015)
New Revision: 38616
Modified:
data/CVE/list
Log:
Add details of CVE-2015-7550
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-31 01:24:34 UTC (rev 38615)
+++ data/CVE/list 2015-12-31 02:38:31 UTC (rev 38616)
@@ -6033,8 +6033,10 @@
- ruby2.2 <unfixed> (bug #796551)
NOTE: https://www.ruby-lang.org/en/news/2015/12/16/unsafe-tainted-string-usage-in-fiddle-and-dl-cve-2015-7551/
TODO: check correctness for CVE-2009-5147/CVE-2015-7551 record since affects multiple ruby versions
-CVE-2015-7550
- RESERVED
+CVE-2015-7550 [Linux keyring subsystem race leads to null dereference]
+ - linux <unfixed>
+ - linux-2.6 <removed>
+ NOTE: https://git.kernel.org/linus/b4a1b4f5047e4f54e194681125c74c0aa64d637d
CVE-2015-7549 [pci: msi-x: null pointer dereference issue]
RESERVED
- qemu 1:2.5+dfsg-1 (bug #808131)
More information about the Secure-testing-commits
mailing list