[Secure-testing-commits] r42086 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri May 27 20:17:32 UTC 2016
Author: carnil
Date: 2016-05-27 20:17:32 +0000 (Fri, 27 May 2016)
New Revision: 42086
Modified:
data/CVE/list
Log:
Update information for CVE-2016-5105/qemu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-27 20:14:49 UTC (rev 42085)
+++ data/CVE/list 2016-05-27 20:17:32 UTC (rev 42086)
@@ -238,10 +238,12 @@
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg04340.html
CVE-2016-5105 [scsi: megasas: stack information leakage while reading configuration]
- qemu <unfixed>
- - qemu-kvm <removed>
+ [jessie] - qemu <no-dsa> (Minor issue)
+ [wheezy] - qemu <not-affected> (Vulnerable code not present)
+ - qemu-kvm <not-affected> (Vulnerable code not present)
+ NOTE: Introduced after: http://git.qemu.org/?p=qemu.git;a=commit;h=e8f943c3bcc2a578bfd30b825f2ebaf345c63a09 (v1.2.0-rc0)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg04419.html
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1339583
- TODO: check versions
CVE-2016-5104
- libimobiledevice <unfixed> (bug #825553)
[wheezy] - libimobiledevice <not-affected> (Vulnerable code not present)
More information about the Secure-testing-commits
mailing list