[Secure-testing-commits] r41275 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-04-29 10:20:09 +0000 (Fri, 29 Apr 2016)
New Revision: 41275

Modified:
   data/CVE/list
Log:
Four CVEs fixed in unstable for src:linux

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-04-29 09:26:19 UTC (rev 41274)
+++ data/CVE/list	2016-04-29 10:20:09 UTC (rev 41275)
@@ -777,7 +777,7 @@
 	NOTE: World readable files in /etc/quagga as well in Debian
 CVE-2016-3955 [remote buffer overflow in usbip]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.2-1
 	NOTE: Upstream commit: https://git.kernel.org/linus/b348d7dddb6c4fbfc810b7a0626e8ec9e29f7cbb (v4.6-rc3)
 	NOTE: http://www.openwall.com/lists/oss-security/2016/04/19/1
 CVE-2016-4038
@@ -1133,7 +1133,7 @@
 CVE-2016-3962
 	RESERVED
 CVE-2016-3961 (Xen and the Linux kernel through 4.5.x do not properly suppress ...)
-	- linux <unfixed>
+	- linux 4.5.2-1
 	NOTE: http://xenbits.xen.org/xsa/advisory-174.html
 CVE-2016-3960 (Integer overflow in the x86 shadow pagetable code in Xen allows local ...)
 	{DSA-3554-1}
@@ -6104,7 +6104,7 @@
 	NOTE: http://marc.info/?l=linux-usb&m=145796659429788&w=2
 CVE-2016-2187 [Kernel panic on invalid USB device descriptor (gtco driver)]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.2-1
 	NOTE: Upstream commit: https://git.kernel.org/linus/162f98dea487206d9ab79fc12ed64700667a894d (v4.6-rc5)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1317017
 CVE-2016-2186 [Kernel panic on invalid USB device descriptor (powermate driver)]
@@ -6305,7 +6305,7 @@
 	NOTE: http://badlock.org/
 CVE-2016-2117 [memory disclosure to ethernet due to unchecked scatter/gather IO]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.2-1
 	[wheezy] - linux <not-affected> (Issue introduced with v3.10-rc1)
 	NOTE: Introduced in https://git.kernel.org/linus/ec5f061564238892005257c83565a0b58ec79295 (v3.10-rc1)
 	NOTE: http://www.openwall.com/lists/oss-security/2016/03/16/7