[Secure-testing-commits] r48300 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Jan 23 09:14:43 UTC 2017
Author: jmm
Date: 2017-01-23 09:14:43 +0000 (Mon, 23 Jan 2017)
New Revision: 48300
Modified:
data/CVE/list
Log:
n/a for stable/oldstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-23 09:10:14 UTC (rev 48299)
+++ data/CVE/list 2017-01-23 09:14:43 UTC (rev 48300)
@@ -24,12 +24,12 @@
- linux <unfixed>
NOTE: Fixed by: https://git.kernel.org/linus/a45f795c65b479b4ba107b6ccde29b896d51ee98 (v4.10-rc1)
CVE-2016-10152 [Use of hard-coded DNS domain if configuration file cannot be read]
- - hesiod <unfixed> (bug #852093)
+ - hesiod <unfixed> (low; bug #852093)
[jessie] - hesiod <no-dsa> (Minor issue)
NOTE: https://github.com/achernya/hesiod/pull/10
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1332493
CVE-2016-10151 [Weak SUID check allowing privilege elevation]
- - hesiod <unfixed> (bug #852094)
+ - hesiod <unfixed> (low; bug #852094)
[jessie] - hesiod <no-dsa> (Minor issue)
NOTE: https://github.com/achernya/hesiod/pull/9
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1332508
@@ -71,6 +71,8 @@
NOTE: Fixed by: https://git.kernel.org/linus/6d104af38b570d37aa32a5803b04c354f8ed513d
CVE-2017-5546 [mm/slab.c: fix SLAB freelist randomization duplicate entries]
- linux <unfixed>
+ [jessie] - linux <not-affected> (freelist randomisation introduced in 4.7)
+ [wheezy] - linux <not-affected> (freelist randomisation introduced in 4.7)
NOTE: Fixed by: https://git.kernel.org/linus/c4e490cf148e85ead0d1b1c2caaba833f1d5b29f (v4.10-rc4)
CVE-2017-5538
NOT-FOR-US: Samsung Exynos
More information about the Secure-testing-commits
mailing list