[Secure-testing-commits] r40926 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu Apr 14 14:39:52 UTC 2016 

Author: jmm
Date: 2016-04-14 14:39:52 +0000 (Thu, 14 Apr 2016)
New Revision: 40926

Modified:
   data/CVE/list
Log:
linux fixes in sid


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-04-14 12:11:01 UTC (rev 40925)
+++ data/CVE/list	2016-04-14 14:39:52 UTC (rev 40926)
@@ -856,7 +856,7 @@
 	RESERVED
 CVE-2016-3672 [Unlimiting the stack not longer disables ASLR]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.1-1
 	NOTE: http://hmarco.org/bugs/CVE-2016-3672-Unlimiting-the-stack-not-longer-disables-ASLR.html
 	NOTE: Upstream fix: https://git.kernel.org/linus/8b8addf891de8a00e4d39fc32f93f7c5eb8feceb (v4.6-rc1)
 CVE-2014-9769 (pcre_jit_compile.c in PCRE 8.35 does not properly use table jumps to ...)
@@ -2046,7 +2046,7 @@
 	RESERVED
 CVE-2016-3156 [ipv4: Don't do expensive useless work during inetdev destroy]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.1-1
 	NOTE: http://www.openwall.com/lists/oss-security/2016/03/15/3
 CVE-2016-XXXX [opam: does not verify certificate]
 	- opam 1.2.2-5 (bug #818081)
@@ -2260,7 +2260,7 @@
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/11/12
 CVE-2016-3140 [crash on invalid USB device descriptors (digi_acceleport driver)]
 	RESERVED
-	- linux <unfixed> (low)
+	- linux 4.5.1-1 (low)
 	[jessie] - linux <no-dsa> (Minor issue)
 	[wheezy] - linux <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/bugtraq/2016/Mar/61
@@ -2282,14 +2282,14 @@
 	NOTE: http://marc.info/?l=linux-usb&m=145803342320160&w=2
 CVE-2016-3137 [crash on invalid USB device descriptors (cypress_m8 driver)]
 	RESERVED
-	- linux <unfixed> (low)
+	- linux 4.5.1-1 (low)
 	[jessie] - linux <no-dsa> (Minor issue)
 	[wheezy] - linux <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/bugtraq/2016/Mar/55
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1283368
 CVE-2016-3136 [crash on invalid USB device descriptors (mct_u232 driver)]
 	RESERVED
-	- linux <unfixed> (low)
+	- linux 4.5.1-1 (low)
 	[jessie] - linux <no-dsa> (Minor issue)
 	[wheezy] - linux <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/bugtraq/2016/Mar/57
@@ -2746,7 +2746,7 @@
 	NOTE: Upstream fix: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c.diff?r1=1.281&r2=1.282&sortby=date&f=h
 CVE-2016-3134 [netfilter IPT_SO_SET_REPLACE memory corruption]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.1-1
 	NOTE: https://code.google.com/p/google-security-research/issues/detail?id=758
 	NOTE: https://patchwork.ozlabs.org/patch/595575/
 	NOTE: http://marc.info/?l=netfilter-devel&m=145757134822741&w=2

More information about the Secure-testing-commits mailing list