[Secure-testing-commits] r39546 - in data: CVE DSA
Sebastien Delafond
seb at moszumanska.debian.org
Mon Feb 8 19:19:10 UTC 2016
Author: seb
Date: 2016-02-08 19:19:10 +0000 (Mon, 08 Feb 2016)
New Revision: 39546
Modified:
data/CVE/list
data/DSA/list
Log:
Fix qemu-related DSA and CVE info after discussion with Michael Tokarev
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-08 19:15:33 UTC (rev 39545)
+++ data/CVE/list 2016-02-08 19:19:10 UTC (rev 39546)
@@ -1061,6 +1061,7 @@
TODO: check
CVE-2016-1981 [net: e1000 infinite loop in start_xmit and e1000_receive_iov routines]
RESERVED
+ {DSA-3471-1}
- qemu 1:2.5+dfsg-5 (bug #812307)
[squeeze] - qemu <end-of-life> (Not supported in Squeeze LTS)
- qemu-kvm <removed>
@@ -4021,6 +4022,7 @@
NOTE: http://xenbits.xen.org/xsa/advisory-169.html
CVE-2015-8619 [hmp: stack based OOB write in hmp_sendkey routine]
RESERVED
+ {DSA-3471-1}
- qemu 1:2.5+dfsg-5 (bug #809237)
[wheezy] - qemu <not-affected> (Issue introduced afer 1.2)
[squeeze] - qemu <not-affected> (Issue introduced afer 1.2)
@@ -4780,6 +4782,7 @@
[squeeze] - linux-2.6 <no-dsa> (Xen not supported in Squeeze LTS)
- qemu 1:2.5+dfsg-2 (bug #809229)
[squeeze] - qemu <end-of-life> (Unsupported in Squeeze LTS)
+ [wheezy] - qemu <not-affected> (vulnerable code not present)
- qemu-kvm <removed>
[squeeze] - qemu-kvm <end-of-life> (Not supported in Squeeze LTS)
- xen <unfixed>
@@ -4815,6 +4818,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/12/15/4
CVE-2015-8567 [net: vmxnet3: host memory leakage -- does not check if the device is active before activating it]
RESERVED
+ {DSA-3471-1}
- qemu 1:2.5+dfsg-3 (bug #808145)
[wheezy] - qemu <not-affected> (Vulnerable code not present)
[squeeze] - qemu <not-affected> (Vulnerable code not present)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2016-02-08 19:15:33 UTC (rev 39545)
+++ data/DSA/list 2016-02-08 19:19:10 UTC (rev 39546)
@@ -1,6 +1,6 @@
[07 Feb 2016] DSA-3471-1 qemu - security update
- {CVE-2015-7295 CVE-2015-7504 CVE-2015-7512 CVE-2015-7549 CVE-2015-8345 CVE-2015-8504 CVE-2015-8550 CVE-2015-8558 CVE-2015-8568 CVE-2015-8613 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2016-1568 CVE-2016-1714 CVE-2016-1922}
- [jessie] - qemu 2.1+dfsg-12+deb8u5
+ {CVE-2015-7295 CVE-2015-7504 CVE-2015-7512 CVE-2015-7549 CVE-2015-8345 CVE-2015-8504 CVE-2015-8550 CVE-2015-8558 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613 CVE-2015-8619 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2016-1568 CVE-2016-1714 CVE-2016-1922 CVE-2016-1981}
+ [jessie] - qemu 1:2.1+dfsg-12+deb8u5
[07 Feb 2016] DSA-3470-1 qemu-kvm - security update
{CVE-2015-7295 CVE-2015-7504 CVE-2015-7512 CVE-2015-8345 CVE-2015-8504 CVE-2015-8558 CVE-2015-8743 CVE-2016-1568 CVE-2016-1714 CVE-2016-1922}
[wheezy] - qemu-kvm 1.1.2+dfsg-6+deb7u12
More information about the Secure-testing-commits
mailing list