[Secure-testing-commits] r44072 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Aug 20 13:34:15 UTC 2016


Author: carnil
Date: 2016-08-20 13:34:15 +0000 (Sat, 20 Aug 2016)
New Revision: 44072

Modified:
   data/CVE/list
Log:
Add bug reference for CVE-2016-6888, #834902

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-08-20 12:46:47 UTC (rev 44071)
+++ data/CVE/list	2016-08-20 13:34:15 UTC (rev 44072)
@@ -83,13 +83,13 @@
 CVE-2016-6823
 	RESERVED
 CVE-2016-6888 [net: vmxnet: integer overflow in packet initialisation]
-	- qemu <unfixed>
+	- qemu <unfixed> (bug #834902)
+	[jessie] - qemu <no-dsa> (Minor issue)
 	[wheezy] - qemu <not-affected> (Vulnerable code not present, vmxnet3 introduced in 1.5)
 	- qemu-kvm <removed>
 	[wheezy] - qemu-kvm <not-affected> (Vulnerable code not present, vmxnet3 introduced in 1.5)
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg03176.html
 	NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=47882fa4975bf0b58dd74474329fdd7154e8f04c
-	TODO: check
 CVE-2016-6875 [Fix infinite recursion in wddx]
 	RESERVED
 	- hhvm <unfixed>




More information about the Secure-testing-commits mailing list