[Secure-testing-commits] r31230 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 9 21:25:12 UTC 2015
Author: carnil
Date: 2015-01-09 21:25:11 +0000 (Fri, 09 Jan 2015)
New Revision: 31230
Modified:
data/CVE/list
Log:
Add CVE-2014-9585/linux, have not remove the TODO here as needs double-check
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-09 21:19:56 UTC (rev 31229)
+++ data/CVE/list 2015-01-09 21:25:11 UTC (rev 31230)
@@ -710,6 +710,12 @@
RESERVED
CVE-2015-0565
RESERVED
+CVE-2014-9585 [x86_64, vdso: Fix the vdso address randomization algorithm]
+ - linux <unfixed>
+ - linux-2.6 <removed>
+ NOTE: https://git.kernel.org/cgit/linux/kernel/git/luto/linux.git/commit/?h=x86/vdso&id=bc3b94c31d65e761ddfe150d02932c65971b74e2
+ NOTE: http://marc.info/?l=linux-kernel&m=141911002822659&w=2
+ TODO: check
CVE-2014-9583 (common.c in infosvr in ASUS WRT firmware 3.0.0.4.376_1071, ...)
TODO: check
CVE-2014-9582 (Cross-site scripting (XSS) vulnerability in ...)
More information about the Secure-testing-commits
mailing list