[Secure-testing-commits] r37981 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-11-30 09:45:57 +0000 (Mon, 30 Nov 2015)
New Revision: 37981

Modified:
   data/CVE/list
Log:
Add CVE-2015-7504/qemu added, left todo item

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-11-30 09:36:47 UTC (rev 37980)
+++ data/CVE/list	2015-11-30 09:45:57 UTC (rev 37981)
@@ -2442,8 +2442,14 @@
 	RESERVED
 CVE-2015-7505
 	RESERVED
-CVE-2015-7504
+CVE-2015-7504 [net: pcnet: heap overflow vulnerability in loopback mode]
 	RESERVED
+	- qemu <unfixed>
+	[squeeze] - qemu <end-of-life> (Not supported in Squeeze LTS)
+	- qemu-kvm <removed>
+	[squeeze] - qemu-kvm <end-of-life> (Not supported in Squeeze LTS)
+	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2015-11/msg06342.html
+	TODO: check
 CVE-2015-7503 [Potential Information Disclosure in Zend\Crypt\PublicKey\Rsa\PublicKey]
 	RESERVED
 	NOT-FOR-US: php-zend-crypt