[Secure-testing-commits] r43958 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Aug 12 17:47:20 UTC 2016
Author: carnil
Date: 2016-08-12 17:47:20 +0000 (Fri, 12 Aug 2016)
New Revision: 43958
Modified:
data/CVE/list
Log:
Add new qemu issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-12 17:27:13 UTC (rev 43957)
+++ data/CVE/list 2016-08-12 17:47:20 UTC (rev 43958)
@@ -1,3 +1,24 @@
+CVE-2016-XXXX [net: vmxnet3: use after free while writing]
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg01602.html
+ TODO: check
+CVE-2016-XXXX [an infinite loop during packet fragmentation]
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg01601.html
+ TODO: check
+CVE-2016-XXXX [buffer overflow in vmxnet_tx_pkt_parse_headers() in vmxnet3 device emulation]
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: Upstream patch: https://lists.gnu.org/archive/html/qemu-stable/2016-08/msg00077.html
+ TODO: check
+CVE-2016-XXXX [Information leak in vmxnet3_complete_packet]
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg02108.html
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1366369
+ TODO: check
CVE-2016-6671 [buffer overflow when decoding swf]
- ffmpeg 7:3.1.2-1
CVE-2016-6670
More information about the Secure-testing-commits
mailing list