[Secure-testing-commits] r48533 - data/CVE
Guido Guenther
agx at moszumanska.debian.org
Sun Jan 29 17:07:33 UTC 2017
Author: agx
Date: 2017-01-29 17:07:33 +0000 (Sun, 29 Jan 2017)
New Revision: 48533
Modified:
data/CVE/list
Log:
Even wheezy is affected
but hotplugging of sound devices needs QMP monitor access
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-29 17:06:50 UTC (rev 48532)
+++ data/CVE/list 2017-01-29 17:07:33 UTC (rev 48533)
@@ -449,14 +449,14 @@
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2017-01/msg01742.html
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1414209
NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=069eb7b2b8fc47c7cb52e5a4af23ea98d939e3da
- TODO: check affected versions
+ NOTE: Sound device hotplug not supported by libvirt
CVE-2017-5525 [audio: memory leakage in ac97 device; CVE for the memory consumption issue]
RESERVED
- qemu 1:2.8+dfsg-2 (bug #852021)
- qemu-kvm <removed>
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2017-01/msg01740.html
NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=12351a91da97b414eec8cdb09f1d9f41e535a401
- TODO: check affected versions
+ NOTE: Sound device hotplug not supported by libvirt
CVE-2017-5523
RESERVED
CVE-2017-5522 [stack buffer overflow]
More information about the Secure-testing-commits
mailing list