[Secure-testing-commits] r45739 - data/CVE
Guido Guenther
agx at moszumanska.debian.org
Sat Oct 29 12:55:51 UTC 2016
Author: agx
Date: 2016-10-29 12:55:51 +0000 (Sat, 29 Oct 2016)
New Revision: 45739
Modified:
data/CVE/list
Log:
Mark all qemu versions as affected by the recent 9pfs issues
and file bug
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-29 12:04:24 UTC (rev 45738)
+++ data/CVE/list 2016-10-29 12:55:51 UTC (rev 45739)
@@ -3,36 +3,31 @@
CVE-2014-9909
RESERVED
CVE-2016-XXXX [9pfs: memory leakage in v9fs_write]
- - qemu <unfixed>
+ - qemu <unfixed> (bug #842463)
- qemu-kvm <removed>
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02623.html
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/28/4
- TODO: check affected versions
CVE-2016-XXXX [memory leakage in v9fs_link]
- - qemu <unfixed>
+ - qemu <unfixed> (bug #842463)
- qemu-kvm <removed>
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02608.html
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/28/3
- TODO: check affected versions
CVE-2016-XXXX [9pfs: integer overflow leading to OOB access]
- - qemu <unfixed>
+ - qemu <unfixed> (bug #842463)
- qemu-kvm <removed>
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02942.html
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/28/2
- TODO: check affected versions
CVE-2016-XXXX [9pfs: information leakage via xattribute]
- - qemu <unfixed>
+ - qemu <unfixed> (bug #842463)
- qemu-kvm <removed>
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg01790.html
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/28/1
- TODO: check affected versions
CVE-2016-XXXX [memory leakage when creating extended attribute]
- - qemu <unfixed>
+ - qemu <unfixed> (bug #842463)
- qemu-kvm <removed>
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg01861.html
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1389550
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/27/15
- TODO: check affected versions
CVE-2016-XXXX [net: eepro100 memory leakage at device unplug]
- qemu <unfixed> (bug #842455)
- qemu-kvm <removed>
More information about the Secure-testing-commits
mailing list