[Secure-testing-commits] r45048 - data/CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Wed Oct 5 01:21:54 UTC 2016
Author: anarcat
Date: 2016-10-05 01:21:54 +0000 (Wed, 05 Oct 2016)
New Revision: 45048
Modified:
data/CVE/list
Log:
marked fixed version for CVE_2016-7117
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-05 01:14:49 UTC (rev 45047)
+++ data/CVE/list 2016-10-05 01:21:54 UTC (rev 45048)
@@ -3702,10 +3702,10 @@
CVE-2016-7119 (Cross-site scripting (XSS) vulnerability in the user-profile biography ...)
TODO: check
CVE-2016-7117 (use after free in the recvmmsg exit path)
- - linux <unfixed>
- TODO: check
+ - linux 4.5.5-1
+ TODO: check if jessie is really affected
NOTE: https://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-7117.html
- NOTE: http://www.securityfocus.com/bid/93304/info
+ NOTE: according to this, 3.16.36 is affected: http://www.securityfocus.com/bid/93304/info
NOTE: patch: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=34b88a68f26a75e4fded796f1a49c40f82234b7d
CVE-2016-7115 (Buffer overflow in the handle_packet function in mactelnet.c in the ...)
{DLA-639-1}
More information about the Secure-testing-commits
mailing list