[Secure-testing-commits] r42774 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jun 24 19:44:43 UTC 2016
Author: carnil
Date: 2016-06-24 19:44:42 +0000 (Fri, 24 Jun 2016)
New Revision: 42774
Modified:
data/CVE/list
Log:
Update details for CVE-2016-499{7,8}
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-24 19:38:04 UTC (rev 42773)
+++ data/CVE/list 2016-06-24 19:44:42 UTC (rev 42774)
@@ -2219,12 +2219,14 @@
RESERVED
CVE-2016-4999
RESERVED
-CVE-2016-4998
+CVE-2016-4998 [out of bounds reads when processing IPT_SO_SET_REPLACE setsockopt]
RESERVED
- linux <unfixed>
-CVE-2016-4997
+ NOTE: Non-privileged user namespaces disabled by default, only vulnerable with sysctl kernel.unprivileged_userns_clone=1
+CVE-2016-4997 [Corrupted offset allows for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt]
RESERVED
- linux <unfixed>
+ NOTE: Non-privileged user namespaces disabled by default, only vulnerable with sysctl kernel.unprivileged_userns_clone=1
CVE-2016-4996
RESERVED
- foreman <itp> (bug #663101)
More information about the Secure-testing-commits
mailing list