[Secure-testing-commits] r41537 - data/CVE

Sat, 07 May 2016 21:54:46 -0700 

Author: carnil
Date: 2016-05-08 04:54:27 +0000 (Sun, 08 May 2016)
New Revision: 41537

Modified:
   data/CVE/list
Log:
Four CVEs fixed in unstable for linux

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-05-08 04:23:41 UTC (rev 41536)
+++ data/CVE/list       2016-05-08 04:54:27 UTC (rev 41537)
@@ -13,13 +13,13 @@
        NOTE: Fixed by: https://core.trac.wordpress.org/changeset/37382
        NOTE: http://www.openwall.com/lists/oss-security/2016/05/07/2
 CVE-2016-4568 [videobuf2-v4l2: Verify planes array in buffer dequeueing]
-       - linux <unfixed>
+       - linux 4.5.3-1
        [jessie] - linux <not-affected> (Vulnerable code introduced in 4.4)
        [wheezy] - linux <not-affected> (Vulnerable code introduced in 4.4)
        NOTE: Fixed by: 
https://git.kernel.org/linus/2c1f6951a8a82e6de0d82b1158b5e493fc6c54ab (v4.6-rc6)
        NOTE: Introduced by: 
https://git.kernel.org/linus/b0e0e1f83de31aa0428c38b692c590cc0ecd3f03 (v4.4-rc1)
 CVE-2016-4565 [IB/security: Restrict use of the write() interface]
-       - linux <unfixed>
+       - linux 4.5.3-1
        NOTE: Fixed by: 
https://git.kernel.org/linus/e6bd18f57aad1a2d1ef40e646d03ed0f2515c9e3 (v4.6-rc6)
 CVE-2016-4551
        RESERVED
@@ -46,12 +46,12 @@
        NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2016/05/06/6
        TODO: check
 CVE-2016-4558 [bpf: fix refcnt overflow]
-       - linux <unfixed>
+       - linux 4.5.3-1
        NOTE: Fixed by: 
https://git.kernel.org/linus/92117d8443bc5afacc8d5ba82e541946310f106e
        NOTE: Introduced by: 
https://git.kernel.org/linus/1be7f75d1668d6296b80bf35dcf6762393530afc(v4.4-rc1)
        NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=809
 CVE-2016-4557 [UAF via double-fdput() in bpf(BPF_PROG_LOAD) error path]
-       - linux <unfixed> (bug #823603)
+       - linux 4.5.3-1 (bug #823603)
        [jessie] - linux <not-affected> (Issue introduced later)
        [wheezy] - linux <not-affected> (Issue introduced later)
        NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=808


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to