[Secure-testing-commits] r57825 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Nov 19 14:24:53 UTC 2017
Author: carnil
Date: 2017-11-19 14:24:53 +0000 (Sun, 19 Nov 2017)
New Revision: 57825
Modified:
data/CVE/list
Log:
Add bug reference for CVE-2017-16845, #882136, mark as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-19 14:15:31 UTC (rev 57824)
+++ data/CVE/list 2017-11-19 14:24:53 UTC (rev 57825)
@@ -457,7 +457,9 @@
CVE-2017-16846 (Zoho ManageEngine Applications Manager 13 allows SQL injection via the ...)
NOT-FOR-US: Zoho ManageEngine Applications Manager
CVE-2017-16845 (hw/input/ps2.c in Qemu does not validate 'rptr' and 'count' values ...)
- - qemu <unfixed>
+ - qemu <unfixed> (bug #882136)
+ [stretch] - qemu <no-dsa> (Minor issue)
+ [jessie] - qemu <no-dsa> (Minor issue)
- qemu-kvm <removed>
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html
CVE-2017-16844 (Heap-based buffer overflow in the loadbuf function in formisc.c in ...)
More information about the Secure-testing-commits
mailing list