[Secure-testing-commits] r39082 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 22 06:48:57 UTC 2016
Author: carnil
Date: 2016-01-22 06:48:57 +0000 (Fri, 22 Jan 2016)
New Revision: 39082
Modified:
data/CVE/list
Log:
Update information for CVE-2016-1981/qemu, thanks mjt for checking and reporting
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-22 06:20:32 UTC (rev 39081)
+++ data/CVE/list 2016-01-22 06:48:57 UTC (rev 39082)
@@ -162,9 +162,9 @@
- qemu-kvm <removed>
[squeeze] - qemu-kvm <end-of-life> (Not supported in Squeeze LTS)
NOTE: Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg03454.html
+ NOTE: Introduced in http://git.qemu.org/?p=qemu.git;a=commit;h=7c23b8920329180f48b8a147b629d8837709d201 (v0.10.0)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1298570
NOTE: http://www.openwall.com/lists/oss-security/2016/01/19/10
- TODO: check versions
CVE-2016-XXXX [out-of-bounds write with cpio 2.11]
- cpio <unfixed>
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/19/4
More information about the Secure-testing-commits
mailing list