[Secure-testing-commits] r36426 - in data: CVE DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Sep 2 16:11:14 UTC 2015
Author: carnil
Date: 2015-09-02 16:11:14 +0000 (Wed, 02 Sep 2015)
New Revision: 36426
Modified:
data/CVE/list
data/DSA/list
Log:
Separate listing of fixed version for wheezy of DSA-3348-1
Qemu in wheezy is only affected by a subset of CVEs for DSA-3348-1. Move
fixed version to CVE list only to have the tracker show the version
information about fixed version correctly.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-02 15:57:54 UTC (rev 36425)
+++ data/CVE/list 2015-09-02 16:11:14 UTC (rev 36426)
@@ -2414,6 +2414,7 @@
CVE-2015-5745 [buffer overflow in virtio-serial]
RESERVED
- qemu 1:2.4+dfsg-1a (bug #795087)
+ [wheezy] - qemu 1.1.2+dfsg-6a+deb7u9
[squeeze] - qemu <not-affected> (Vulnerable code introduced later)
- qemu-kvm <removed>
[squeeze] - qemu-kvm <not-affected> (Vulnerable code introduced later)
@@ -4026,6 +4027,7 @@
NOTE: http://xenbits.xen.org/xsa/advisory-139.html
CVE-2015-5165 (The C+ mode offload emulation in the RTL8139 network card device model ...)
- qemu 1:2.4+dfsg-1a (bug #794610)
+ [wheezy] - qemu 1.1.2+dfsg-6a+deb7u9
[squeeze] - qemu <end-of-life> (Not supported in Squeeze LTS)
- qemu-kvm <removed>
[squeeze] - qemu-kvm <end-of-life> (Not supported in Squeeze LTS)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2015-09-02 15:57:54 UTC (rev 36425)
+++ data/DSA/list 2015-09-02 16:11:14 UTC (rev 36426)
@@ -3,7 +3,6 @@
[wheezy] - qemu-kvm 1.1.2+dfsg-6+deb7u9
[02 Sep 2015] DSA-3348-1 qemu - security update
{CVE-2015-3214 CVE-2015-5154 CVE-2015-5165 CVE-2015-5225 CVE-2015-5745}
- [wheezy] - qemu 1.1.2+dfsg-6a+deb7u9
[jessie] - qemu 1:2.1+dfsg-12+deb8u2
[02 Sep 2015] DSA-3347-1 pdns - security update
{CVE-2015-5230}
More information about the Secure-testing-commits
mailing list