Author: carnil
Date: 2016-06-25 10:59:11 +0000 (Sat, 25 Jun 2016)
New Revision: 42783
Modified:
data/CVE/list
Log:
Four CVEs fixed in unstable for linux
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-25 10:34:28 UTC (rev 42782)
+++ data/CVE/list 2016-06-25 10:59:11 UTC (rev 42783)
@@ -2221,11 +2221,11 @@
RESERVED
CVE-2016-4998 [out of bounds reads when processing IPT_SO_SET_REPLACE
setsockopt]
RESERVED
- - linux <unfixed>
+ - linux 4.6.2-2
NOTE: Non-privileged user namespaces disabled by default, only
vulnerable with sysctl kernel.unprivileged_userns_clone=1
CVE-2016-4997 [Corrupted offset allows for arbitrary decrements in compat
IPT_SO_SET_REPLACE setsockopt]
RESERVED
- - linux <unfixed>
+ - linux 4.6.2-2
NOTE: Non-privileged user namespaces disabled by default, only
vulnerable with sysctl kernel.unprivileged_userns_clone=1
CVE-2016-4996
RESERVED
@@ -3453,7 +3453,7 @@
NOTE:
https://github.com/uclouvain/openjpeg/commit/8f9cc62b3f9a1da9712329ddcedb9750d585505c
NOTE: CVE-2016-4797 exists because of an incorrect fix for CVE-2014-7947
CVE-2016-4794 (Use-after-free vulnerability in mm/percpu.c in the Linux kernel
...)
- - linux <unfixed>
+ - linux 4.6.2-2
[jessie] - linux <not-affected> (Introduced in v3.18-rc1)
[wheezy] - linux <not-affected> (Introduced in v3.18-rc1)
NOTE:
https://git.kernel.org/linus/4f996e234dad488e5d9ba0858bc1bae12eff82c3
@@ -4018,7 +4018,7 @@
RESERVED
CVE-2016-4470
RESERVED
- - linux <unfixed>
+ - linux 4.6.2-2
NOTE: https://www.spinics.net/lists/linux-kernel-janitors/msg26069.html
CVE-2016-4469
RESERVED
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
