[Secure-testing-commits] r34308 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Sat May 16 19:34:28 UTC 2015


Author: jmm
Date: 2015-05-16 19:34:28 +0000 (Sat, 16 May 2015)
New Revision: 34308

Modified:
   data/CVE/list
Log:
update on kernel issue, fixed in sid


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-05-16 17:29:57 UTC (rev 34307)
+++ data/CVE/list	2015-05-16 19:34:28 UTC (rev 34308)
@@ -6258,11 +6258,14 @@
 	NOTE: https://bugs.mageia.org/show_bug.cgi?id=15173
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/20/14
 CVE-2015-XXXX [Linux ASLR mmap weakness: Reducing entropy by half]
-	- linux <unfixed>
-	- linux-2.6 <not-affected>
-	NOTE: http://hmarco.org/bugs/linux-ASLR-reducing-mmap-by-half.html
+	- linux 4.0.2-1
+	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 <not-affected> (powerpc not supported in Squeeze LTS)
+        NOTE: http://hmarco.org/bugs/linux-ASLR-reducing-mmap-by-half.html
 	NOTE: arm64 affected from v3.7 to v3.18
 	NOTE: powerpc affected from v2.6.30 to 3.2
+	NOTE: Fix for arm64: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d6c763afab
+	NOTE: Fix for ppc: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?fa8cbaaf5a68
 CVE-2015-2060 [directory traversal; related to overlong utf-8 encoding for /]
 	RESERVED
 	- cabextract 1.6-1 (bug #778753)




More information about the Secure-testing-commits mailing list