Author: carnil
Date: 2017-03-30 04:15:20 +0000 (Thu, 30 Mar 2017)
New Revision: 50185
Modified:
data/CVE/list
Log:
Five CVEs fixed for linuxx in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-30 04:10:04 UTC (rev 50184)
+++ data/CVE/list 2017-03-30 04:15:20 UTC (rev 50185)
@@ -1,5 +1,5 @@
CVE-2017-7308
- - linux <unfixed>
+ - linux 4.9.18-1
CVE-2017-7298 (In Moodle 3.2.2+, there is XSS in the Course summary filter of
the "Add ...)
- moodle <undetermined>
NOTE: http://www.daimacn.com/post/12.html
@@ -13,7 +13,7 @@
CVE-2017-7293
RESERVED
CVE-2017-7294 (The vmw_surface_define_ioctl function in ...)
- - linux <unfixed>
+ - linux 4.9.18-1
CVE-2017-7292
RESERVED
CVE-2017-7291
@@ -245,7 +245,7 @@
CVE-2017-7262 (The AMD Ryzen processor with AGESA microcode through 2017-01-27
allows ...)
- amd64-microcode <undetermined>
CVE-2017-7261 (The vmw_surface_define_ioctl function in ...)
- - linux <unfixed>
+ - linux 4.9.18-1
CVE-2017-7260
RESERVED
CVE-2017-7259
@@ -543,7 +543,7 @@
CVE-2017-7188
RESERVED
CVE-2017-7187 (The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel
through ...)
- - linux <unfixed>
+ - linux 4.9.18-1
[jessie] - linux <not-affected> (Introduced in 3.17)
[wheezy] - linux <not-affected> (Introduced in 3.17)
CVE-2017-7185
@@ -564,7 +564,7 @@
[wheezy] - erlang <not-affected> (Vulnerable code not present)
NOTE: https://github.com/erlang/otp/pull/1108
CVE-2017-7184 (The linux-image-* package 4.8.0.41.52 for the Linux kernel on
Ubuntu ...)
- - linux <unfixed> (low)
+ - linux 4.9.18-1 (low)
NOTE: Unprivileged user namespaces are disabled in Debian, this only
affects
NOTE: non-standard setups
CVE-2017-7186 (libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote
...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
