[Secure-testing-commits] r52840 - data/CVE

Guido Guenther agx at moszumanska.debian.org
Fri Jun 23 11:04:46 UTC 2017


Author: agx
Date: 2017-06-23 11:04:46 +0000 (Fri, 23 Jun 2017)
New Revision: 52840

Modified:
   data/CVE/list
Log:
lts: mark CVE-2017-8379 no-dsa

The input code is different in wheezy so it's not worth the risk.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-23 11:04:36 UTC (rev 52839)
+++ data/CVE/list	2017-06-23 11:04:46 UTC (rev 52840)
@@ -5308,7 +5308,9 @@
 CVE-2017-8379 (Memory leak in the keyboard input event handlers support in QEMU (aka ...)
 	- qemu 1:2.8+dfsg-5 (bug #862289)
 	[jessie] - qemu <no-dsa> (Minor issue)
+	[wheezy] - qemu <no-dsa> (Minor issue)
 	- qemu-kvm <removed>
+	[wheezy] - qemu-kvm <no-dsa> (Minor issue)
 	NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=fa18f36a461984eae50ab957e47ec78dae3c14fc
 CVE-2017-8378 (Heap-based buffer overflow in the PdfParser::ReadObjects function in ...)
 	- libpodofo <unfixed> (bug #861597)




More information about the Secure-testing-commits mailing list