[Secure-testing-commits] r41785 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue May 17 04:13:35 UTC 2016 

Author: carnil
Date: 2016-05-17 04:13:35 +0000 (Tue, 17 May 2016)
New Revision: 41785

Modified:
   data/CVE/list
Log:
Some CVEs fixed in unstable for src:linux

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-05-16 21:10:11 UTC (rev 41784)
+++ data/CVE/list	2016-05-17 04:13:35 UTC (rev 41785)
@@ -494,7 +494,7 @@
 	RESERVED
 CVE-2016-4581
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.4-1
 	[wheezy] - linux <not-affected> (Vulnerable code introduced later)
 	NOTE: Fixed by: https://git.kernel.org/linus/5ec0811d30378ae104f250bfc9b3640242d81e3f (v4.6-rc7)
 	NOTE: Introduced by: https://git.kernel.org/linus/f2ebb3a921c1ca1e2ddd9242e95a1989a50c4c68 (v3.15-rc1)
@@ -916,11 +916,11 @@
 	NOTE: https://www.openafs.org/pages/security/OPENAFS-SA-2016-002.txt
 CVE-2016-4486 [information leak vulnerability in rtnetlink]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.4-1
 	NOTE: https://git.kernel.org/linus/5f8e44741f9f216e33736ea4ec65ca9ac03036e6
 CVE-2016-4485 [information leak vulnerability in llc module]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.4-1
 	NOTE: https://git.kernel.org/linus/b8670c09f37bdf2847cc44f36511a53afc6161fd
 CVE-2016-4484
 	RESERVED
@@ -2944,7 +2944,7 @@
 	NOTE: https://sourceforge.net/p/graphicsmagick/code/ci/45998a25992d1142df201d8cf024b6c948b40748/
 CVE-2016-3713 [kvm: OOB r/w access issue with MSR 0x2F8]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.4-1
 	[jessie] - linux <not-affected> (Introduced in v4.2-rc1)
 	[wheezy] - linux <not-affected> (Introduced in v4.2-rc1)
 	NOTE: Introduced by: https://git.kernel.org/linus/910a6aae4e2e45855efc4a268e43eed2d8445575 (v4.2-rc1)
@@ -12330,7 +12330,7 @@
 	RESERVED
 CVE-2016-0758 [flaw in ASN.1 DER decoder for x509  certificate DER files]
 	RESERVED
-	- linux <unfixed>
+	- linux 4.5.4-1
 	[jessie] - linux <no-dsa> (Vulnerable code not built)
 	[wheezy] - linux <not-affected> (Vulnerable code introduced in v3.10-rc1)
 	NOTE: https://lkml.org/lkml/2016/5/12/270

More information about the Secure-testing-commits mailing list