[Secure-testing-commits] r39652 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Feb 13 19:28:37 UTC 2016
Author: carnil
Date: 2016-02-13 19:28:37 +0000 (Sat, 13 Feb 2016)
New Revision: 39652
Modified:
data/CVE/list
Log:
Try to mark CVE-2016-0774 to reflect current status for the issue
Bit complicated to track this correctly. Wheezy needs an additonal fix
since the fix for CVE-2015-1805 was incomplete. But for the other
versions the upstream fix was correct.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-13 18:12:33 UTC (rev 39651)
+++ data/CVE/list 2016-02-13 19:28:37 UTC (rev 39652)
@@ -4734,11 +4734,12 @@
- pillow 3.1.1-1 (bug #813909)
- python-imaging <removed>
NOTE: https://github.com/python-pillow/Pillow/commit/bcaaf97f4ff25b3b5b9e8efeda364e17e80858ec (3.1.1)
-CVE-2016-0774 [Incomplete fix for CVE-2015-1805 in Red Hat Enterprise Linux only]
+CVE-2016-0774 [Incomplete fix for CVE-2015-1805 for kernel versions < 3.16]
RESERVED
- - linux <not-affected> (Only affects Red Hat Enterprise Linux)
- - linux-2.6 <not-affected> (Only affects Red Hat Enterprise Linux)
+ - linux 3.16.2-2
+ - linux-2.6 <removed>
NOTE: https://rhn.redhat.com/errata/RHSA-2016-0103.html
+ NOTE: The upstream fix for 3.16 was correct, but wheezy had a incomplete backport
CVE-2016-0773
RESERVED
- postgresql-9.5 9.5.1-1
More information about the Secure-testing-commits
mailing list