[kernel-sec-discuss] r3403 - active
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Jun 27 08:23:33 UTC 2014
Author: jmm
Date: 2014-06-27 08:23:33 +0000 (Fri, 27 Jun 2014)
New Revision: 3403
Added:
active/CVE-2014-4611
Log:
new lz4 issue (sid only)
Added: active/CVE-2014-4611
===================================================================
--- active/CVE-2014-4611 (rev 0)
+++ active/CVE-2014-4611 2014-06-27 08:23:33 UTC (rev 3403)
@@ -0,0 +1,10 @@
+Description: Integer overflow in lzo1x_decompress_safe()
+References:
+Notes:
+Bugs:
+upstream: released (3.16-rc2) [206204a1162b995e2185275167b22468c00d6b36]
+2.6.32-upstream-stable: N/A "lz4 compression introduced in 3.11"
+sid: needed
+3.2-wheezy-security: N/A "lz4 compression introduced in 3.11"
+2.6.32-squeeze-security: N/A "lz4 compression introduced in 3.11"
+3.2-upstream-stable: N/A "lz4 compression introduced in 3.11"
More information about the kernel-sec-discuss
mailing list