[Secure-testing-commits] r41994 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-05-24 14:37:25 +0000 (Tue, 24 May 2016)
New Revision: 41994

Modified:
   data/CVE/list
Log:
Update information for CVE-2016-4964/qemu

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-05-24 14:21:54 UTC (rev 41993)
+++ data/CVE/list	2016-05-24 14:37:25 UTC (rev 41994)
@@ -6,9 +6,11 @@
 	NOTE: Authenticated TLS "contraints" introduced in 2015-03-24 OpenNTPD 5.7p4
 CVE-2016-4964 [scsi: mptsas infinite loop in mptsas_fetch_requests]
 	- qemu <unfixed>
-	- qemu-kvm <removed>
+	[jessie] - qemu <not-affected> (LSI SAS1068 (mptsas) device support added later)
+	[wheezy] - qemu <not-affected> (LSI SAS1068 (mptsas) device support added later)
+	- qemu-kvm <not-affected> (LSI SAS1068 (mptsas) device support added later)
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg04027.html
-	TODO: check versions
+	NOTE: Introduced by: http://git.qemu.org/?p=qemu.git;a=commit;h=e351b82611293683c4cabe4b69b7552bde5d4e2a (v2.6.0-rc0)
 CVE-2016-4950
 	RESERVED
 CVE-2016-4949