[Secure-testing-commits] r41995 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue May 24 14:55:32 UTC 2016
Author: carnil
Date: 2016-05-24 14:55:32 +0000 (Tue, 24 May 2016)
New Revision: 41995
Modified:
data/CVE/list
Log:
Update status for CVE-2016-4952/qemu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-24 14:37:25 UTC (rev 41994)
+++ data/CVE/list 2016-05-24 14:55:32 UTC (rev 41995)
@@ -61,9 +61,10 @@
CVE-2016-4952 [scsi: pvscsi: out-of-bounds access issue in pvsci_ring_init_msg/data routines]
- qemu <unfixed>
[jessie] - qemu <no-dsa> (Minor issue)
- - qemu-kvm <removed>
+ [wheezy] - qemu <not-affected> (VMWare PVSCSI paravirtual device implementation introduced later)
+ - qemu-kvm <not-affected> (VMWare PVSCSI paravirtual device implementation introduced later)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg03774.html
- TODO: check versions
+ NOTE: Introduced in: http://git.qemu.org/?p=qemu.git;a=commit;h=881d588a98bf0dce98ddb65c15aa0854c0ac41ed (v1.5.0-rc0)
CVE-2016-4951 (The tipc_nl_publ_dump function in net/tipc/socket.c in the Linux ...)
- linux <unfixed>
[jessie] - linux <not-affected> (Introduced in 3.19)
More information about the Secure-testing-commits
mailing list