[Secure-testing-commits] r58344 - data/CVE

Moritz Muehlenhoff Thu, 07 Dec 2017 13:37:44 -0800

Author: jmm
Date: 2017-12-07 21:35:53 +0000 (Thu, 07 Dec 2017)
New Revision: 58344


Modified:
   data/CVE/list
Log:
qemu triage


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-12-07 21:23:37 UTC (rev 58343)
+++ data/CVE/list       2017-12-07 21:35:53 UTC (rev 58344)
@@ -602,6 +602,8 @@
        RESERVED
 CVE-2017-17381 (The Virtio Vring implementation in QEMU allows local OS guest 
users to ...)
        - qemu <unfixed> (bug #883625)
+       [stretch] - qemu <postponed> (Can be fixed along in later update)
+       [jessie] - qemu <not-affected> (Vulnerable code not present)
        - qemu-kvm <removed>
        NOTE: 
https://lists.gnu.org/archive/html/qemu-devel/2017-12/msg00166.html
 CVE-2018-1140
@@ -9186,6 +9188,8 @@
 CVE-2017-15119 [DoS via large option request]
        RESERVED
        - qemu <unfixed> (bug #883399)
+       [stretch] - qemu <postponed> (Can be fixed along in later update)
+       [jessie] - qemu <not-affected> (Vulnerable code not present)
        - qemu-kvm <removed>
        [wheezy] - qemu-kvm <not-affected> (Vulnerable code introduced later)
        NOTE: 
https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg05044.html


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r58344 - data/CVE

Reply via email to