[Secure-testing-commits] r35621 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Jul 22 14:55:55 UTC 2015


Author: carnil
Date: 2015-07-22 14:55:55 +0000 (Wed, 22 Jul 2015)
New Revision: 35621

Modified:
   data/CVE/list
Log:
Update status for new lxc issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-07-22 14:47:01 UTC (rev 35620)
+++ data/CVE/list	2015-07-22 14:55:55 UTC (rev 35621)
@@ -12026,18 +12026,20 @@
 	RESERVED
 CVE-2015-1335
 	RESERVED
-CVE-2015-1334
+CVE-2015-1334 [processes intended to be run inside of confined LXC containers to escape their AppArmor or SELinux confinement]
 	RESERVED
 	- lxc <unfixed>
-	TODO: check
+	[wheezy] - lxc <not-affected> (Affects 0.9.0 and higher)
+	[squeeze] - lxc <not-affected> (Affects 0.9.0 and higher)
 CVE-2015-1333
 	RESERVED
 CVE-2015-1332
 	RESERVED
-CVE-2015-1331
+CVE-2015-1331 [directory traversal]
 	RESERVED
 	- lxc <unfixed>
-	TODO: check
+	[wheezy] - lxc <not-affected> (Affects 1.0.0 and higher)
+	[squeeze] - lxc <not-affected> (Affects 1.0.0 and higher)
 CVE-2015-1330 (unattended-upgrades before 0.86.1 does not properly authenticate ...)
 	{DSA-3297-1 DLA-267-1}
 	- unattended-upgrades 0.86.1




More information about the Secure-testing-commits mailing list