[Secure-testing-commits] r42148 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-05-30 09:05:10 +0000 (Mon, 30 May 2016)
New Revision: 42148

Modified:
   data/CVE/list
Log:
Add CVE-2016-4454

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-05-30 09:03:51 UTC (rev 42147)
+++ data/CVE/list	2016-05-30 09:05:10 UTC (rev 42148)
@@ -1804,8 +1804,13 @@
 CVE-2016-4455
 	RESERVED
 	NOT-FOR-US: Red Hat Subscription Manager
-CVE-2016-4454
+CVE-2016-4454 [display: vmsvga: out-of-bounds read in vmsvga_fifo_read_raw() routine]
 	RESERVED
+	- qemu <unfixed>
+	- qemu-kvm <removed>
+	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg05271.html
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1336429
+	TODO: check versions
 CVE-2016-4453 [display: vmsvga: infinite loop in vmsvga_fifo_run()]
 	RESERVED
 	- qemu <unfixed>