[Secure-testing-commits] r43071 - data/CVE

[Ben Hutchings]

Author: benh
Date: 2016-07-08 09:32:57 +0000 (Fri, 08 Jul 2016)
New Revision: 43071

Modified:
   data/CVE/list
Log:
Triage linux issues for wheezy

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-07-08 09:10:12 UTC (rev 43070)
+++ data/CVE/list	2016-07-08 09:32:57 UTC (rev 43071)
@@ -673,6 +673,7 @@
 CVE-2016-6130 (Race condition in the sclp_ctl_ioctl_sccb function in ...)
 	{DSA-3616-1}
 	- linux 4.6.1-1
+	[wheezy] - linux <not-affected> (Vulnerable code not present)
 	NOTE: Fixed by: https://git.kernel.org/linus/532c34b5fbf1687df63b3fcd5b2846312ac943c6
 CVE-2016-6128 [Invalid color index is not properly handled leading to denial of service]
 	RESERVED
@@ -927,6 +928,7 @@
 CVE-2014-9904 (The snd_compress_check_input function in sound/core/compress_offload.c ...)
 	{DSA-3616-1}
 	- linux 4.0.2-1
+	[wheezy] - linux <not-affected> (Vulnerable code not present)
 	NOTE: 4.0.2-1 the first version in unstable after 3.17-rc1
 	NOTE: Fixed by: https://git.kernel.org/linus/6217e5ede23285ddfee10d2e4ba0cc2d4c046205 (3.17-rc1)
 	NOTE: Introduced by: https://git.kernel.org/linus/b35cc8225845112a616e3a2266d2fde5ab13d3ab (3.7-rc1)
@@ -3355,10 +3357,12 @@
 CVE-2016-4998 (The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter ...)
 	{DSA-3607-1}
 	- linux 4.6.2-2
+	[wheezy] - linux <no-dsa> (Only exploitable by privileged user; too many changes to backport)
 	NOTE: Non-privileged user namespaces disabled by default, only vulnerable with sysctl kernel.unprivileged_userns_clone=1
 CVE-2016-4997 (The compat IPT_SO_SET_REPLACE setsockopt implementation in the ...)
 	{DSA-3607-1}
 	- linux 4.6.2-2
+	[wheezy] - linux <no-dsa> (Only exploitable by privileged user; too many changes to backport)
 	NOTE: Non-privileged user namespaces disabled by default, only vulnerable with sysctl kernel.unprivileged_userns_clone=1
 CVE-2016-4996
 	RESERVED