[Secure-testing-commits] r34708 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Jun 4 06:24:48 UTC 2015


Author: carnil
Date: 2015-06-04 06:24:48 +0000 (Thu, 04 Jun 2015)
New Revision: 34708

Modified:
   data/CVE/list
Log:
Update CVE-2015-4170/linux

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-06-04 06:13:43 UTC (rev 34707)
+++ data/CVE/list	2015-06-04 06:24:48 UTC (rev 34708)
@@ -328,8 +328,9 @@
 	- linux 3.13.4-1
 	- linux-2.6 <removed>
 	NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cf872776fc84128bb779ce2b83a37c884c3203ae (v3.13-rc5)
+	NOTE: Affected code was introduced by the rewrite in https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4898e640caf03fdbaf2122d5a33949bf3e4a5b34 (v3.11-rc1)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/05/26/1
-	TODO: check affected version
+	TODO: check affected version (if code was backported from v3.11-rc1)
 CVE-2015-4065 (Cross-site scripting (XSS) vulnerability in ...)
 	NOT-FOR-US: WordPress plugin landing-pages
 CVE-2015-4064 (SQL injection vulnerability in modules/module.ab-testing.php in the ...)




More information about the Secure-testing-commits mailing list