Author: carnil Date: 2017-02-15 18:21:06 +0000 (Wed, 15 Feb 2017) New Revision: 48963
Modified: data/CVE/list Log: Update information for CVE-2017-2630/qemu Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-02-15 18:18:59 UTC (rev 48962) +++ data/CVE/list 2017-02-15 18:21:06 UTC (rev 48963) @@ -9297,10 +9297,11 @@ CVE-2017-2630 [nbd: oob stack write in client routine drop_sync] RESERVED - qemu <unfixed> - - qemu-kvm <removed> + [jessie] - qemu <not-affected> (Vulnerable code introduced in v2.8.0-rc0) + [wheezy] - qemu <not-affected> (Vulnerable code introduced in v2.8.0-rc0) + - qemu-kvm <not-affected> (Vulnerable code introduced later) NOTE: Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg01246.html NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1422415 - TODO: check affected versions CVE-2017-2629 RESERVED CVE-2017-2628 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits