[Secure-testing-commits] r38852 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jan 11 18:07:46 UTC 2016
Author: carnil
Date: 2016-01-11 18:07:46 +0000 (Mon, 11 Jan 2016)
New Revision: 38852
Modified:
data/CVE/list
Log:
Add new qemu issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-11 17:51:18 UTC (rev 38851)
+++ data/CVE/list 2016-01-11 18:07:46 UTC (rev 38852)
@@ -1,3 +1,10 @@
+CVE-2016-XXXX [nvram: OOB r/w access in processing firmware configurations]
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1296060
+ NOTE: Upstream fix: https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg00428.html
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/11/7
+ TODO: check versions
CVE-2015-8767 [SCTP denial of service during heartbeat timeout functions]
- linux 4.3.1-1
- linux-2.6 <removed>
More information about the Secure-testing-commits
mailing list