[Secure-testing-commits] r53308 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sat Jul 8 21:40:56 UTC 2017
Author: jmm
Date: 2017-07-08 21:40:56 +0000 (Sat, 08 Jul 2017)
New Revision: 53308
Modified:
data/CVE/list
Log:
another openvswitch issue unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-08 21:39:07 UTC (rev 53307)
+++ data/CVE/list 2017-07-08 21:40:56 UTC (rev 53308)
@@ -4582,10 +4582,11 @@
CVE-2017-9266
RESERVED
CVE-2017-9265 (In Open vSwitch (OvS) v2.7.0, there is a buffer over-read while parsing ...)
- - openvswitch <unfixed> (bug #863662)
+ - openvswitch <unfixed> (unimportant; bug #863662)
[jessie] - openvswitch <not-affected> (Vulnerable code not present)
[wheezy] - openvswitch <not-affected> (Vulnerable code not present)
NOTE: https://mail.openvswitch.org/pipermail/ovs-dev/2017-May/332965.html
+ NOTE: OpenFlow 1.5 support still incomplete
CVE-2017-9264 (In lib/conntrack.c in the firewall implementation in Open vSwitch (OvS) ...)
- openvswitch <unfixed> (unimportant; bug #863661)
[jessie] - openvswitch <not-affected> (Vulnerable code not present; connection tracking support introduced in 2.6.0)
More information about the Secure-testing-commits
mailing list