Author: carnil Date: 2016-06-25 10:59:11 +0000 (Sat, 25 Jun 2016) New Revision: 42783
Modified: data/CVE/list Log: Four CVEs fixed in unstable for linux Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-06-25 10:34:28 UTC (rev 42782) +++ data/CVE/list 2016-06-25 10:59:11 UTC (rev 42783) @@ -2221,11 +2221,11 @@ RESERVED CVE-2016-4998 [out of bounds reads when processing IPT_SO_SET_REPLACE setsockopt] RESERVED - - linux <unfixed> + - linux 4.6.2-2 NOTE: Non-privileged user namespaces disabled by default, only vulnerable with sysctl kernel.unprivileged_userns_clone=1 CVE-2016-4997 [Corrupted offset allows for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt] RESERVED - - linux <unfixed> + - linux 4.6.2-2 NOTE: Non-privileged user namespaces disabled by default, only vulnerable with sysctl kernel.unprivileged_userns_clone=1 CVE-2016-4996 RESERVED @@ -3453,7 +3453,7 @@ NOTE: https://github.com/uclouvain/openjpeg/commit/8f9cc62b3f9a1da9712329ddcedb9750d585505c NOTE: CVE-2016-4797 exists because of an incorrect fix for CVE-2014-7947 CVE-2016-4794 (Use-after-free vulnerability in mm/percpu.c in the Linux kernel ...) - - linux <unfixed> + - linux 4.6.2-2 [jessie] - linux <not-affected> (Introduced in v3.18-rc1) [wheezy] - linux <not-affected> (Introduced in v3.18-rc1) NOTE: https://git.kernel.org/linus/4f996e234dad488e5d9ba0858bc1bae12eff82c3 @@ -4018,7 +4018,7 @@ RESERVED CVE-2016-4470 RESERVED - - linux <unfixed> + - linux 4.6.2-2 NOTE: https://www.spinics.net/lists/linux-kernel-janitors/msg26069.html CVE-2016-4469 RESERVED _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits