[Secure-testing-commits] r33102 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-03-24 06:07:41 +0000 (Tue, 24 Mar 2015)
New Revision: 33102

Modified:
   data/CVE/list
Log:
Add new qemu issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-03-24 06:03:59 UTC (rev 33101)
+++ data/CVE/list	2015-03-24 06:07:41 UTC (rev 33102)
@@ -1,3 +1,9 @@
+CVE-2015-XXXX [malicious PRDT flow from guest to host]
+	- qemu <unfixed>
+	- qemu-kvm <removed>
+	NOTE: http://git.qemu.org/?p=qemu.git;a=commitdiff;h=3251bdcf1c67427d964517053c3d185b46e618e8
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/03/24/4
+	TODO: check which versions affected
 CVE-2015-XXXX [Assertion failure in dns.c, possibly connected to UDP DoS attack]
 	- tor 0.2.5.11-1
 	[wheezy] - tor 0.2.4.26-1