[Secure-testing-commits] r41989 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue May 24 10:27:46 UTC 2016
Author: carnil
Date: 2016-05-24 10:27:45 +0000 (Tue, 24 May 2016)
New Revision: 41989
Modified:
data/CVE/list
Log:
Adjust information for CVE-2014-3672/qemu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-24 06:04:57 UTC (rev 41988)
+++ data/CVE/list 2016-05-24 10:27:45 UTC (rev 41989)
@@ -55462,11 +55462,15 @@
- linux-2.6 <removed>
[squeeze] - linux-2.6 2.6.32-48squeeze9
NOTE: Upstream commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9de7922bc709eee2f609cd01d98aaedc4cf5ea74 (v3.18-rc1)
-CVE-2014-3672
+CVE-2014-3672 [Unrestricted qemu logging]
RESERVED
- - xen <unfixed> (low)
- [jessie] - xen <no-dsa> (Minor issue, can be fixed along in a future DSA)
+ - qemu <unfixed>
+ [jessie] - qemu <no-dsa> (Minor issue)
+ - qemu-kvm <removed>
+ - xen 4.4.0-1
+ NOTE: Xen switched to qemu-system in 4.4.0-1
NOTE: http://xenbits.xen.org/xsa/advisory-180.html
+ NOTE: Related hardening for libvirt: https://libvirt.org/git/?p=libvirt.git;a=commit;h=0d968ad715475a1660779bcdd2c5b38ad63db4cf
CVE-2014-3671
REJECTED
CVE-2014-3670 (The exif_ifd_make_value function in exif.c in the EXIF extension in ...)
More information about the Secure-testing-commits
mailing list