[Secure-testing-commits] r36466 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Sep 4 05:45:28 UTC 2015
Author: carnil
Date: 2015-09-04 05:45:28 +0000 (Fri, 04 Sep 2015)
New Revision: 36466
Modified:
data/CVE/list
Log:
Update CVE-2015-3247/spice
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-04 05:20:29 UTC (rev 36465)
+++ data/CVE/list 2015-09-04 05:45:28 UTC (rev 36466)
@@ -9199,8 +9199,9 @@
CVE-2015-3247 [memory corruption in worker_update_monitors_config()]
RESERVED
- spice <unfixed>
- NOTE: Referenced Bug with patch from Red Hat is currently private
- TODO: check
+ [wheezy] - spice <not-affected> (monitors_config support introduced in 0.11.3)
+ NOTE: Referenced Bug with Details from Red Hat is currently private
+ NOTE: Patch: https://git.centos.org/blob/rpms!spice.git/11e32f6dd156a3c4847da29d989837437e973ccc/SOURCES!0038-Avoid-race-conditions-reading-monitor-configs-from-g.patch
CVE-2015-3246 (libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the ...)
- libuser <unfixed> (bug #793465)
CVE-2015-3245 (Incomplete blacklist vulnerability in the chfn function in libuser ...)
More information about the Secure-testing-commits
mailing list