[Secure-testing-commits] r49723 - data/CVE

Thu Mar 16 20:29:24 UTC 2017

Author: jmm
Date: 2017-03-16 20:29:24 +0000 (Thu, 16 Mar 2017)
New Revision: 49723

Modified:
   data/CVE/list
Log:
linux/android updates


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2017-03-16 19:53:35 UTC (rev 49722)
+++ data/CVE/list	2017-03-16 20:29:24 UTC (rev 49723)
@@ -16335,9 +16335,8 @@
 CVE-2017-0529 (An information disclosure vulnerability in the MediaTek driver could ...)
 	NOT-FOR-US: MediaTek driver for Android
 CVE-2017-0528 (An elevation of privilege vulnerability in the kernel security ...)
-	- linux <undetermined>
+	NOT-FOR-US: Android bulletin lists as affecting only Pixel and Pixel XL (Qualcomm Snapdragon) so probably relates to Qualcomm driver
 	NOTE: https://source.android.com/security/bulletin/2017-03-01.html
-	NOTE: Android bulletin lists as affecting only Pixel and Pixel XL (Qualcomm Snapdragon) so probably relates to Qualcomm driver
 CVE-2017-0527 (An elevation of privilege vulnerability in the HTC Sensor Hub Driver ...)
 	NOT-FOR-US: HTC driver for Android
 CVE-2017-0526 (An elevation of privilege vulnerability in the HTC Sensor Hub Driver ...)
@@ -16377,9 +16376,11 @@
 CVE-2017-0509 (An elevation of privilege vulnerability in the Broadcom Wi-Fi driver ...)
 	NOT-FOR-US: Broadcom driver for Android
 CVE-2017-0508 (An elevation of privilege vulnerability in the kernel ION subsystem ...)
-	TODO: check, present in drivers/staging/android/ion
+	- linux <undetermined>
+	NOTE: present in drivers/staging/android/ion
 CVE-2017-0507 (An elevation of privilege vulnerability in the kernel ION subsystem ...)
-	TODO: check, present in drivers/staging/android/ion
+	- linux <undetermined>
+	NOTE: present in drivers/staging/android/ion
 CVE-2017-0506 (An elevation of privilege vulnerability in MediaTek components, ...)
 	NOT-FOR-US: MediaTek driver for Android
 CVE-2017-0505 (An elevation of privilege vulnerability in MediaTek components, ...)


