[Secure-testing-commits] r44029 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Aug 18 04:45:53 UTC 2016
Author: carnil
Date: 2016-08-18 04:45:53 +0000 (Thu, 18 Aug 2016)
New Revision: 44029
Modified:
data/CVE/list
Log:
CVE-2016-6835/qemu assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-18 04:44:15 UTC (rev 44028)
+++ data/CVE/list 2016-08-18 04:45:53 UTC (rev 44029)
@@ -340,14 +340,13 @@
NOTE: Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg01601.html
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/08/11/8
TODO: check
-CVE-2016-XXXX [buffer overflow in vmxnet_tx_pkt_parse_headers() in vmxnet3 device emulation]
+CVE-2016-6835 [buffer overflow in vmxnet_tx_pkt_parse_headers() in vmxnet3 device emulation]
- qemu <unfixed>
[wheezy] - qemu <not-affected> (Vulnerable code not present, vmxnet3 introduced in 1.5)
- qemu-kvm <removed>
[wheezy] - qemu-kvm <not-affected> (Vulnerable code not present, vmxnet3 introduced in 1.5)
NOTE: Upstream patch: https://lists.gnu.org/archive/html/qemu-stable/2016-08/msg00077.html
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/08/11/7
- TODO: check
+ NOTE: http://www.openwall.com/lists/oss-security/2016/08/11/7
CVE-2016-XXXX [Information leak in vmxnet3_complete_packet]
- qemu <unfixed>
[wheezy] - qemu <not-affected> (Vulnerable code not present, vmxnet3 introduced in 1.5)
More information about the Secure-testing-commits
mailing list