[Git][security-tracker-team/security-tracker][master] Add CVE-2018-16880/linux
Salvatore Bonaccorso
carnil at debian.org
Fri Jan 25 20:14:42 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
41c345b6 by Salvatore Bonaccorso at 2019-01-25T20:14:17Z
Add CVE-2018-16880/linux
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -24357,8 +24357,12 @@ CVE-2018-16882 (A use-after-free issue was found in the way the Linux kernel's K
NOTE: Fixed by: https://git.kernel.org/linus/c2dd5146e9fe1f22c77c1b011adf84eea0245806
CVE-2018-16881 (A denial of service vulnerability was found in rsyslog in the imptcp ...)
TODO: check
-CVE-2018-16880
+CVE-2018-16880 [oob-write in drivers/vhost/net.c:get_rx_bufs()]
RESERVED
+ - linux <unfixed>
+ [stretch] - linux <not-affected> (Vulnerable code introduced in 4.16-rc1)
+ [jessie] - linux <not-affected> (Vulnerable code introduced in 4.16-rc1)
+ NOTE: https://www.openwall.com/lists/oss-security/2019/01/25/1
CVE-2018-16879 (Ansible Tower before version 3.3.3 does not set a secure channel as it ...)
NOT-FOR-US: Ansible Tower
CVE-2018-16878
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/41c345b6c72b1e6abc5db08185b2ebcdb065e9cc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/41c345b6c72b1e6abc5db08185b2ebcdb065e9cc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190125/d0c83ad2/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list