[Secure-testing-commits] r47525 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 28 18:03:23 UTC 2016
Author: carnil
Date: 2016-12-28 18:03:23 +0000 (Wed, 28 Dec 2016)
New Revision: 47525
Modified:
data/CVE/list
Log:
Sync CVE-2016-9576 with kernel-sec, unfixed in 4.8.15-1 as consequence
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-28 17:59:57 UTC (rev 47524)
+++ data/CVE/list 2016-12-28 18:03:23 UTC (rev 47525)
@@ -10792,12 +10792,12 @@
RESERVED
CVE-2016-9577
RESERVED
-CVE-2016-9576 [use-after-free in SCSI generic device interface]
+CVE-2016-9576 [Memory corruption in SCSI generic device interface]
RESERVED
- - linux 4.8.15-1
+ - linux <unfixed>
NOTE: https://marc.info/?l=linux-scsi&m=148010092224801&w=2
NOTE: https://gist.githubusercontent.com/dvyukov/80cd94b4e4c288f16ee4c787d404118b/raw/10536069562444da51b758bb39655b514ff93b45/gistfile1.txt
- NOTE: Fixed by: https://git.kernel.org/linus/a0ac402cfcdc904f9772e1762b3fda112dcc56a0
+ NOTE: Fixed by: https://git.kernel.org/linus/128394eff343fc6d2f32172f03e24829539c5835 (v4.10-rc1)
CVE-2016-9575 [Insufficient permission check in certprofile-mod]
RESERVED
- freeipa <unfixed>
More information about the Secure-testing-commits
mailing list