[Secure-testing-commits] r52744 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Jun 20 13:12:52 UTC 2017 

Author: carnil
Date: 2017-06-20 13:12:52 +0000 (Tue, 20 Jun 2017)
New Revision: 52744

Modified:
   data/CVE/list
Log:
Four CVEs fixed for linux in unstable

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-20 12:42:10 UTC (rev 52743)
+++ data/CVE/list	2017-06-20 13:12:52 UTC (rev 52744)
@@ -37,7 +37,7 @@
 	NOT-FOR-US: OpenBSD
 CVE-2017-1000364 (An issue was discovered in the size of the stack guard page on Linux, ...)
 	{DSA-3886-1 DLA-993-1}
-	- linux <unfixed>
+	- linux 4.11.6-1
 	[stretch] - linux 4.9.30-2+deb9u1
 	NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
 CVE-2017-1000365 (The Linux Kernel imposes a size restriction on the arguments and ...)
@@ -478,7 +478,7 @@
 CVE-2017-1000378 (The NetBSD qsort() function is recursive, and not randomized, an ...)
 	NOT-FOR-US: NetBSD
 CVE-2017-9605 (The vmw_gb_surface_define_ioctl function (accessible via ...)
-	- linux <unfixed>
+	- linux 4.11.6-1
 	NOTE: http://www.openwall.com/lists/oss-security/2017/06/13/2
 	NOTE: Fixed by: https://git.kernel.org/linus/07678eca2cf9c9a18584e546c2b2a0d0c9a3150c (v4.12-rc5)
 CVE-2017-9603 (SQL injection vulnerability in the WP Jobs plugin before 1.5 for ...)
@@ -1412,7 +1412,7 @@
 CVE-2014-9971
 	RESERVED
 CVE-2017-1000380 (sound/core/timer.c in the Linux kernel before 4.11.5 is vulnerable to a ...)
-	- linux <unfixed>
+	- linux 4.11.6-1
 	NOTE: Fixed by: https://git.kernel.org/linus/d11662f4f798b50d8c8743f433842c3e40fe3378 (v4.12-rc5)
 	NOTE: Fixed by: https://git.kernel.org/linus/ba3021b2c79b2fa9114f92790a99deb27a65b728 (v4.12-rc5)
 CVE-2017-1000368 (Todd Miller's sudo version 1.8.20p1 and earlier is vulnerable to an ...)
@@ -7097,7 +7097,7 @@
 CVE-2017-7347
 	RESERVED
 CVE-2017-7346 (The vmw_gb_surface_define_ioctl function in ...)
-	- linux <unfixed>
+	- linux 4.11.6-1
 	[wheezy] - linux <not-affected> (Vulnerable code introduced in 3.14)
 	NOTE: Fixed by: https://git.kernel.org/linus/ee9c4e681ec4f58e42a83cb0c22a0289ade1aacf
 CVE-2017-7345 (NetApp OnCommand Performance Manager and OnCommand Unified Manager for ...)

More information about the Secure-testing-commits mailing list