[Secure-testing-commits] r40196 - in data: CVE DSA

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Mar 6 19:11:39 UTC 2016 

Author: carnil
Date: 2016-03-06 19:11:39 +0000 (Sun, 06 Mar 2016)
New Revision: 40196

Modified:
   data/CVE/list
   data/DSA/list
Log:
Separate CVE was assigned, CVE-2016-2847 related to CVE-2013-4312

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-06 18:48:08 UTC (rev 40195)
+++ data/CVE/list	2016-03-06 19:11:39 UTC (rev 40196)
@@ -67158,11 +67158,15 @@
 CVE-2013-4313 (Moodle through 2.2.11, 2.3.x before 2.3.9, 2.4.x before 2.4.6, and ...)
 	- moodle 2.5.2-1
 	[squeeze] - moodle <not-affected>
+CVE-2016-2847 [pipe: limit the per-user amount of pages allocated in pipes]
+	{DSA-3503-1}
+	- linux 4.3.5-1
+	NOTE: https://git.kernel.org/linus/759c01142a5d0f364a462346168a56de28a80f52 (v4.5-rc1)
 CVE-2013-4312 (The Linux kernel before 4.4.1 allows local users to bypass ...)
 	{DSA-3503-1 DSA-3448-1}
-	- linux 4.3.5-1
+	- linux 4.3.3-6
 	- linux-2.6 <removed>
-	NOTE: https://git.kernel.org/linus/712f4aad406bb1ed67f3f98d04c044191f0ff593
+	NOTE: https://git.kernel.org/linus/712f4aad406bb1ed67f3f98d04c044191f0ff593 (v4.5-rc1)
 	NOTE: First patch for mitigation in 4.3.3-6, 4.3.5-1 adds a second bit required
 CVE-2013-4311 (libvirt 1.0.5.x before 1.0.5.6, 0.10.2.x before 0.10.2.8, and 0.9.12.x ...)
 	- libvirt <unfixed> (unimportant)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2016-03-06 18:48:08 UTC (rev 40195)
+++ data/DSA/list	2016-03-06 19:11:39 UTC (rev 40196)
@@ -18,7 +18,7 @@
 	[wheezy] - bsh 2.0b4-12+deb7u1
 	[jessie] - bsh 2.0b4-15+deb8u1
 [03 Mar 2016] DSA-3503-1 linux - security update
-	{CVE-2013-4312 CVE-2015-8785 CVE-2015-8812 CVE-2015-8816 CVE-2016-2069 CVE-2016-2384 CVE-2016-2543 CVE-2016-2544 CVE-2016-2545 CVE-2016-2546 CVE-2016-2547 CVE-2016-2548 CVE-2016-2549 CVE-2016-2550}
+	{CVE-2013-4312 CVE-2016-2847 CVE-2015-8785 CVE-2015-8812 CVE-2015-8816 CVE-2016-2069 CVE-2016-2384 CVE-2016-2543 CVE-2016-2544 CVE-2016-2545 CVE-2016-2546 CVE-2016-2547 CVE-2016-2548 CVE-2016-2549 CVE-2016-2550}
 	[wheezy] - linux 3.2.73-2+deb7u3
 	[jessie] - linux 3.16.7-ckt20-1+deb8u4
 [03 Mar 2016] DSA-3502-1 roundup - security update

More information about the Secure-testing-commits mailing list