[Secure-testing-commits] r44072 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Aug 20 13:34:15 UTC 2016
Author: carnil
Date: 2016-08-20 13:34:15 +0000 (Sat, 20 Aug 2016)
New Revision: 44072
Modified:
data/CVE/list
Log:
Add bug reference for CVE-2016-6888, #834902
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-20 12:46:47 UTC (rev 44071)
+++ data/CVE/list 2016-08-20 13:34:15 UTC (rev 44072)
@@ -83,13 +83,13 @@
CVE-2016-6823
RESERVED
CVE-2016-6888 [net: vmxnet: integer overflow in packet initialisation]
- - qemu <unfixed>
+ - qemu <unfixed> (bug #834902)
+ [jessie] - qemu <no-dsa> (Minor issue)
[wheezy] - qemu <not-affected> (Vulnerable code not present, vmxnet3 introduced in 1.5)
- qemu-kvm <removed>
[wheezy] - qemu-kvm <not-affected> (Vulnerable code not present, vmxnet3 introduced in 1.5)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg03176.html
NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=47882fa4975bf0b58dd74474329fdd7154e8f04c
- TODO: check
CVE-2016-6875 [Fix infinite recursion in wddx]
RESERVED
- hhvm <unfixed>
More information about the Secure-testing-commits
mailing list