[Secure-testing-commits] r39875 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Feb 24 05:41:39 UTC 2016
Author: carnil
Date: 2016-02-24 05:41:39 +0000 (Wed, 24 Feb 2016)
New Revision: 39875
Modified:
data/CVE/list
Log:
Add CVE-2016-2543/linux
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-24 05:32:50 UTC (rev 39874)
+++ data/CVE/list 2016-02-24 05:41:39 UTC (rev 39875)
@@ -5,6 +5,11 @@
NOTE: Introduced by: https://git.kernel.org/linus/712f4aad406bb1ed67f3f98d04c044191f0ff593 (v4.5-rc1)
NOTE: Technically wheezy-security and squeeze-lts are not affected by this CVE since the fix for
NOTE: addressing CVE-2013-4312 was not applied.
+CVE-2016-2543 [ALSA: seq: Fix missing NULL check at remove_events ioctl]
+ - linux <unfixed>
+ - linux-2.6 <removed>
+ NOTE: Upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=030e2c78d3a91dd0d27fef37e91950dde333eba1 (v4.5-rc1)
+ TODO: check versions
CVE-2016-2537 (The is-my-json-valid package before 2.12.4 for Node.js has an ...)
TODO: check
CVE-2016-2536 (Multiple use-after-free vulnerabilities in SAP 3D Visual Enterprise ...)
More information about the Secure-testing-commits
mailing list