Author: carnil Date: 2016-10-16 12:10:43 +0000 (Sun, 16 Oct 2016) New Revision: 45373
Modified: data/CVE/list Log: Update CVE-2016-8668/qemu information Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-10-16 12:03:52 UTC (rev 45372) +++ data/CVE/list 2016-10-16 12:10:43 UTC (rev 45373) @@ -116,10 +116,11 @@ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1384909 CVE-2016-8668 [net: OOB buffer access in rocker switch emulation] - qemu <unfixed> - - qemu-kvm <removed> + [jessie] - qemu <not-affected> (Vulnerable code introduced after v2.4.0-rc0) + [wheezy] - qemu <not-affected> (Vulnerable code introduced after v2.4.0-rc0) + - qemu-kvm <not-affected> (Vulnerable code introduced later) NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02501.html NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1384896 - TODO: check affected versions CVE-2016-8667 [dma: rc4030 divide by zero error in set_next_tick] - qemu <unfixed> - qemu-kvm <removed> _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits