[Secure-testing-commits] r50800 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Apr 19 10:27:48 UTC 2017
Author: carnil
Date: 2017-04-19 10:27:48 +0000 (Wed, 19 Apr 2017)
New Revision: 50800
Modified:
data/CVE/list
Log:
Add CVE-2017-7718/qemu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-19 09:48:55 UTC (rev 50799)
+++ data/CVE/list 2017-04-19 10:27:48 UTC (rev 50800)
@@ -683,8 +683,13 @@
RESERVED
CVE-2017-7719 (SQL injection in the Spider Event Calendar (aka spider-event-calendar) ...)
NOT-FOR-US: Spider Event Calendar
-CVE-2017-7718
+CVE-2017-7718 [display: cirrus: OOB read access issue]
RESERVED
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: http://git.qemu-project.org/?p=qemu.git;a=commitdiff;h=215902d7b6fb50c6fc216fc74f770858278ed904
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1443441
+ TODO: check affected versions
CVE-2017-7717 (SQL injection vulnerability in the getUserUddiElements method in the ...)
NOT-FOR-US: SAP
CVE-2017-7716 (The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 ...)
More information about the Secure-testing-commits
mailing list