[Secure-testing-commits] r39496 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Fri Feb 5 21:10:17 UTC 2016 

Author: sectracker
Date: 2016-02-05 21:10:17 +0000 (Fri, 05 Feb 2016)
New Revision: 39496

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-02-05 20:37:19 UTC (rev 39495)
+++ data/CVE/list	2016-02-05 21:10:17 UTC (rev 39496)
@@ -621,6 +621,7 @@
 	RESERVED
 CVE-2016-2069 [x86 Linux TLB flush bug]
 	RESERVED
+	{DLA-412-1}
 	- linux <unfixed>
 	- linux-2.6 <removed>
 	NOTE: http://www.openwall.com/lists/oss-security/2016/01/25/1
@@ -1513,16 +1514,19 @@
 	RESERVED
 CVE-2015-8779 [catopen() Multiple unbounded stack allocations]
 	RESERVED
+	{DLA-411-1}
 	- glibc 2.21-7 (bug #812455)
 	- eglibc <removed>
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=17905#c0
 CVE-2015-8778 [hcreate((size_t)-1) should fail with ENOMEM]
 	RESERVED
+	{DLA-411-1}
 	- glibc <unfixed> (bug #812441)
 	- eglibc <removed>
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=18240
 CVE-2015-8776 [Passing out of range data to strftime() causes a segfault]
 	RESERVED
+	{DLA-411-1}
 	- glibc 2.21-7 (bug #812445)
 	- eglibc <removed>
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=18985
@@ -1914,7 +1918,7 @@
 	NOTE: fw_cfg_read removed in: http://git.qemu.org/?p=qemu.git;a=commit;h=6c8d56a2e95712a6206a2671d2b04b2e59cabc0b
 CVE-2015-8767 [SCTP denial of service during heartbeat timeout functions]
 	RESERVED
-	{DSA-3448-1}
+	{DSA-3448-1 DLA-412-1}
 	- linux 4.3.1-1
 	- linux-2.6 <removed>
 	NOTE: https://git.kernel.org/linus/635682a14427d241bab7bbdeebb48a7d7b91638e (v4.3-rc4)
@@ -2870,6 +2874,7 @@
 	NOTE: https://git.enlightenment.org/legacy/imlib2.git/commit/?h=v1.4.7&id=39641e74a560982fbf93f29bf96b37d27803cb56
 CVE-2014-9761 [nan function unbounded stack allocation]
 	RESERVED
+	{DLA-411-1}
 	- glibc <unfixed> (bug #813187)
 	- eglibc <removed>
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=16962
@@ -4535,7 +4540,7 @@
 	NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52072
 CVE-2016-0723 [use-after-free in TIOCGETD ioctl]
 	RESERVED
-	{DSA-3448-1}
+	{DSA-3448-1 DLA-412-1}
 	- linux 4.3.3-6
 	- linux-2.6 <removed>
 	NOTE: http://lkml.iu.edu/hypermail/linux/kernel/1511.3/03045.html
@@ -4789,6 +4794,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2015/12/14/5
 CVE-2015-8785 [fuse: possible denial of service in fuse_fill_write_pages()]
 	RESERVED
+	{DLA-412-1}
 	- linux <unfixed>
 	- linux-2.6 <removed>
 	NOTE: Upstream commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=3ca8138f014a913f98e6ef40e939868e1e9ea876 (v4.4-rc5)
@@ -9303,7 +9309,7 @@
 	RESERVED
 CVE-2015-7566 [Crash on invalid USB device descriptors in visor driver]
 	RESERVED
-	{DSA-3448-1}
+	{DSA-3448-1 DLA-412-1}
 	- linux 4.3.3-6
 	- linux-2.6 <removed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1283371 (not (yet) public)

More information about the Secure-testing-commits mailing list