[Secure-testing-commits] r42061 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu May 26 18:32:48 UTC 2016
Author: carnil
Date: 2016-05-26 18:32:48 +0000 (Thu, 26 May 2016)
New Revision: 42061
Modified:
data/CVE/list
Log:
Add three more qemu issues, to be checked
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-26 18:28:20 UTC (rev 42060)
+++ data/CVE/list 2016-05-26 18:32:48 UTC (rev 42061)
@@ -3,6 +3,23 @@
[jessie] - asterisk <not-affected> (Only affects 13.x)
[wheezy] - asterisk <not-affected> (Only affects 13.x)
NOTE: http://downloads.asterisk.org/pub/security/AST-2016-005.html
+CVE-2016-5107 [scsi: megasas: out-of-bounds read in megasas_lookup_frame() function]
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg04424.html
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1336461
+ TODO: check versions
+CVE-2016-5106 [scsi: megasas: out-of-bounds write while setting controller properties]
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg04340.html
+ TODO: check versions
+CVE-2016-5105 [scsi: megasas: stack information leakage while reading configuration]
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg04419.html
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1339583
+ TODO: check versions
CVE-2016-5104
- libimobiledevice <unfixed>
NOTE: https://github.com/libimobiledevice/libimobiledevice/commit/df1f5c4d70d0c19ad40072f5246ca457e7f9849e
More information about the Secure-testing-commits
mailing list