[Secure-testing-commits] r56633 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Oct 12 06:50:05 UTC 2017
Author: carnil
Date: 2017-10-12 06:50:05 +0000 (Thu, 12 Oct 2017)
New Revision: 56633
Modified:
data/CVE/list
Log:
Update CVE-2017-15268 information
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-12 06:39:02 UTC (rev 56632)
+++ data/CVE/list 2017-10-12 06:50:05 UTC (rev 56633)
@@ -1,7 +1,9 @@
CVE-2017-15268 [I/O: potential memory exhaustion via websock connection to VNC]
RESERVED
- qemu <unfixed>
- - qemu-kvm <removed>
+ [jessie] - qemu <not-affected> (I/O channels driver websockets introduced later)
+ [wheezy] - qemu <not-affected> (I/O channels driver websockets introduced later)
+ - qemu-kvm <not-affected> (I/O channels driver websockets introduced later)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02278.html
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1496879
CVE-2017-15267 (In GNU Libextractor 1.4, there is a NULL Pointer Dereference in ...)
More information about the Secure-testing-commits
mailing list