[Secure-testing-commits] r48250 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jan 21 07:34:56 UTC 2017
Author: carnil
Date: 2017-01-21 07:34:56 +0000 (Sat, 21 Jan 2017)
New Revision: 48250
Modified:
data/CVE/list
Log:
Add CVE-2016-10154/linux
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-21 07:31:16 UTC (rev 48249)
+++ data/CVE/list 2017-01-21 07:34:56 UTC (rev 48250)
@@ -17,6 +17,9 @@
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1415199
NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=eb7a20a3616085d46aa6b4b4224e15587ec67e6e
TODO: check affected versions
+CVE-2016-10154 [cifs: Fix smbencrypt() to stop pointing a scatterlist at the stack]
+ - linux 4.9.2-1
+ NOTE: Fixed by: https://git.kernel.org/linus/06deeec77a5a689cc94b21a8a91a76e42176685d (v4.10-rc1)
CVE-2016-10152 [Use of hard-coded DNS domain if configuration file cannot be read]
- hesiod <unfixed>
NOTE: https://github.com/achernya/hesiod/pull/10
More information about the Secure-testing-commits
mailing list