[Secure-testing-commits] r40239 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-03-08 19:11:42 +0000 (Tue, 08 Mar 2016)
New Revision: 40239

Modified:
   data/CVE/list
Log:
Update status for CVE-2016-2857/qemu and mark as no-dsa

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-08 19:09:09 UTC (rev 40238)
+++ data/CVE/list	2016-03-08 19:11:42 UTC (rev 40239)
@@ -87,11 +87,13 @@
 CVE-2016-2857 [net: out of bounds read in net_checksum_calculate]
 	RESERVED
 	- qemu <unfixed>
+	[jessie] - qemu <no-dsa> (Minor issue)
+	[wheezy] - qemu <no-dsa> (Minor issue)
 	- qemu-kvm <removed>
+	[wheezy] - qemu-kvm <no-dsa> (Minor issue)
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-03/msg00671.html
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1296567
 	NOTE: http://www.openwall.com/lists/oss-security/2016/03/03/9
-	TODO: check affected versions
 CVE-2016-2854 [AUFS Xattr Setgid Privilege Escalation]
 	RESERVED
 	- linux <unfixed>