[Secure-testing-commits] r58229 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Dec 3 16:20:14 UTC 2017


Author: carnil
Date: 2017-12-03 16:20:14 +0000 (Sun, 03 Dec 2017)
New Revision: 58229

Modified:
   data/CVE/list
Log:
Update CVE-2017-15118/qemu information

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-03 16:08:11 UTC (rev 58228)
+++ data/CVE/list	2017-12-03 16:20:14 UTC (rev 58229)
@@ -7655,8 +7655,10 @@
 CVE-2017-15118 [stack buffer overflow in NBD server triggered via long export name]
 	RESERVED
 	- qemu <unfixed>
-	- qemu-kvm <removed>
-	[wheezy] - qemu-kvm <not-affected> (Vulnerable code introduced later)
+	[stretch] - qemu <not-affected> (Vulnerable code introduced in 2.10)
+	[jessie] - qemu <not-affected> (Vulnerable code introduced in 2.10)
+	[wheezy] - qemu <not-affected> (Vulnerable code introduced in 2.10)
+	- qemu-kvm <not-affected> (Vulnerable code introduced in 2.10)
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg05045.html
 CVE-2017-15117
 	REJECTED




More information about the Secure-testing-commits mailing list