[Secure-testing-commits] r41768 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon May 16 12:03:04 UTC 2016


Author: carnil
Date: 2016-05-16 12:03:04 +0000 (Mon, 16 May 2016)
New Revision: 41768

Modified:
   data/CVE/list
Log:
Add CVE-2016-3713/linux

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-05-16 11:58:26 UTC (rev 41767)
+++ data/CVE/list	2016-05-16 12:03:04 UTC (rev 41768)
@@ -2911,8 +2911,13 @@
 	- graphicsmagick <unfixed>
 	NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 	NOTE: https://sourceforge.net/p/graphicsmagick/code/ci/45998a25992d1142df201d8cf024b6c948b40748/
-CVE-2016-3713
+CVE-2016-3713 [kvm: OOB r/w access issue with MSR 0x2F8]
 	RESERVED
+	- linux <unfixed>
+	[jessie] - linux <not-affected> (Introduced in v4.2-rc1)
+	[wheezy] - linux <not-affected> (Introduced in v4.2-rc1)
+	NOTE: Introduced by: https://git.kernel.org/linus/910a6aae4e2e45855efc4a268e43eed2d8445575 (v4.2-rc1)
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1332139
 CVE-2016-3712 (Integer overflow in the VGA module in QEMU allows local guest OS users ...)
 	{DSA-3573-1}
 	- qemu <unfixed> (bug #823830)




More information about the Secure-testing-commits mailing list