[Secure-testing-commits] r53790 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jul 22 15:26:45 UTC 2017
Author: carnil
Date: 2017-07-22 15:26:45 +0000 (Sat, 22 Jul 2017)
New Revision: 53790
Modified:
data/CVE/list
Log:
Add more details for CVE-2015-5160
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-22 15:22:23 UTC (rev 53789)
+++ data/CVE/list 2017-07-22 15:26:45 UTC (rev 53790)
@@ -72995,7 +72995,9 @@
[wheezy] - libvirt <no-dsa> (Minor issue; needs changes first in QEMU)
[squeeze] - libvirt <end-of-life> (Unsupported in squeeze-lts)
NOTE: libvirt side fixed with: http://libvirt.org/git/?p=libvirt.git;a=commit;h=d53d465083edeb64cc7b78249c030734c0d91c6b
+ NOTE: https://libvirt.org/git/?p=libvirt.git;a=commit;h=a1344f70a128921e7fe7213da7c1afbc962fba9c
NOTE: and needs at least Qemu 2.6, which is satisfied in Stretch and later.
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1182074 (not yet opened)
NOTE: https://www.redhat.com/archives/libvir-list/2011-November/msg00853.html
NOTE: Needs changes in QEMU for passing passwords. Affects at least iSCSI and rbd/ceph.
CVE-2015-5159
More information about the Secure-testing-commits
mailing list