[Secure-testing-commits] r36646 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Sun Sep 13 19:54:09 UTC 2015


Author: jmm
Date: 2015-09-13 19:54:09 +0000 (Sun, 13 Sep 2015)
New Revision: 36646

Modified:
   data/CVE/list
Log:
kfreebsd-10 not covered by security support in jessie
binutils no-dsa
no real security impact on binutils-h8300-hms



Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-09-13 19:45:16 UTC (rev 36645)
+++ data/CVE/list	2015-09-13 19:54:09 UTC (rev 36646)
@@ -2788,7 +2788,9 @@
 	NOTE: https://twitter.com/grsecurity/status/597127122910490624
 CVE-2015-XXXX [Stack buffer overflow when printing bad bytes in Intel Hex objects]
 	- binutils <unfixed>
-	- binutils-h8300-hms <undetermined>
+	[squeeze] - binutils <no-dsa> (Minor issue)
+	[wheezy] - binutils <no-dsa> (Minor issue)
+	[jessie] - binutils <no-dsa> (Minor issue)
 	- gdb <undetermined>
 	- sdcc <undetermined>
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/07/31/6
@@ -2873,7 +2875,8 @@
 	RESERVED
 CVE-2015-5675 [IRET privilege escalation]
 	RESERVED
-	- kfreebsd-10 10.1~svn274115-10 (bug #796996)
+	- kfreebsd-10 10.1~svn274115-10 (unimportant; bug #796996)
+	NOTE: kfreebsd not covered by security support in Jessie
 	- kfreebsd-9 <removed> (bug #796997)
 	- kfreebsd-8 <removed>
 	[wheezy] - kfreebsd-8 <no-dsa> (kfreebsd-8 only a test kernel, can be fixed in a point release)




More information about the Secure-testing-commits mailing list