[kernel-sec-discuss] r4414 - active

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon May 30 04:57:09 UTC 2016 

Author: carnil
Date: 2016-05-30 04:57:09 +0000 (Mon, 30 May 2016)
New Revision: 4414

Modified:
   active/CVE-2016-4440
   active/CVE-2016-4482
   active/CVE-2016-4569
   active/CVE-2016-4578
   active/CVE-2016-4580
   active/CVE-2016-4951
Log:
Add updates for fixes in 4.5.5-1

Modified: active/CVE-2016-4440
===================================================================
--- active/CVE-2016-4440	2016-05-28 05:46:12 UTC (rev 4413)
+++ active/CVE-2016-4440	2016-05-30 04:57:09 UTC (rev 4414)
@@ -11,6 +11,6 @@
 upstream: needed
 3.16-upstream-stable: N/A "Vulnerable code not present"
 3.2-upstream-stable: N/A "Vulnerable code not present"
-sid: pending (4.5.5-1) [bugfix/x86/kvm-vmx-more-complete-state-update-on-apicv-on-off.patch]
+sid: released (4.5.5-1) [bugfix/x86/kvm-vmx-more-complete-state-update-on-apicv-on-off.patch]
 3.16-jessie-security: N/A "Vulnerable code not present"
 3.2-wheezy-security: N/A "Vulnerable code not present"

Modified: active/CVE-2016-4482
===================================================================
--- active/CVE-2016-4482	2016-05-28 05:46:12 UTC (rev 4413)
+++ active/CVE-2016-4482	2016-05-30 04:57:09 UTC (rev 4414)
@@ -9,6 +9,6 @@
 upstream: needed
 3.16-upstream-stable: needed
 3.2-upstream-stable: needed
-sid: needed
+sid: released (4.5.5-1) [bugfix/all/usb-usbfs-fix-potential-infoleak-in-devio.patch]
 3.16-jessie-security: needed
 3.2-wheezy-security: needed

Modified: active/CVE-2016-4569
===================================================================
--- active/CVE-2016-4569	2016-05-28 05:46:12 UTC (rev 4413)
+++ active/CVE-2016-4569	2016-05-30 04:57:09 UTC (rev 4414)
@@ -8,6 +8,6 @@
 upstream: pending [cec8f96e49d9be372fdb0c3836dcf31ec71e457e]
 3.16-upstream-stable: needed
 3.2-upstream-stable: needed
-sid: needed
+sid: released (4.4.5-1) [bugfix/all/alsa-timer-fix-leak-in-sndrv_timer_ioctl_params.patch]
 3.16-jessie-security: needed
 3.2-wheezy-security: needed

Modified: active/CVE-2016-4578
===================================================================
--- active/CVE-2016-4578	2016-05-28 05:46:12 UTC (rev 4413)
+++ active/CVE-2016-4578	2016-05-30 04:57:09 UTC (rev 4414)
@@ -7,6 +7,6 @@
 upstream: pending [9a47e9cff994f37f7f0dbd9ae23740d0f64f9fe6, e4ec8cc8039a7063e24204299b462bd1383184a5]
 3.16-upstream-stable: needed
 3.2-upstream-stable: needed
-sid: needed
+sid: released (4.5.5-1) [bugfix/all/alsa-timer-fix-leak-in-events-via-snd_timer_user_cca.patch, bugfix/all/alsa-timer-fix-leak-in-events-via-snd_timer_user_tin.patch]
 3.16-jessie-security: needed
 3.2-wheezy-security: needed

Modified: active/CVE-2016-4580
===================================================================
--- active/CVE-2016-4580	2016-05-28 05:46:12 UTC (rev 4413)
+++ active/CVE-2016-4580	2016-05-30 04:57:09 UTC (rev 4414)
@@ -6,6 +6,6 @@
 upstream: released (4.6) [79e48650320e6fba48369fccf13fd045315b19b8]
 3.16-upstream-stable:
 3.2-upstream-stable:
-sid: pending (4.5.5-1)
+sid: released (4.5.5-1)
 3.16-jessie-security:
 3.2-wheezy-security:

Modified: active/CVE-2016-4951
===================================================================
--- active/CVE-2016-4951	2016-05-28 05:46:12 UTC (rev 4413)
+++ active/CVE-2016-4951	2016-05-30 04:57:09 UTC (rev 4414)
@@ -7,6 +7,6 @@
 upstream: pending [45e093ae2830cd1264677d47ff9a95a71f5d9f9c]
 3.16-upstream-stable: N/A "Introduced in 1a1a143daf84db95dd7212086042004a3abb7bc2 (3.19-rc1)"
 3.2-upstream-stable: N/A "Introduced in 1a1a143daf84db95dd7212086042004a3abb7bc2 (3.19-rc1)"
-sid: pending (4.5.5-1) [bugfix/all/tipc-check-nl-sock-before-parsing-nested-attributes.patch]
+sid: released (4.5.5-1) [bugfix/all/tipc-check-nl-sock-before-parsing-nested-attributes.patch]
 3.16-jessie-security: N/A "Vulnerable code not present"
 3.2-wheezy-security: N/A "Vulnerable code not present"

More information about the kernel-sec-discuss mailing list