Fix retrospectively description of CVE-2017-17805

author: Salvatore Bonaccorso <carnil@debian.org> 2018-01-09 20:44:03 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2018-01-09 20:44:03 +0100
commit: d7539af4ff0bf88312ed6436c215672ed1a67a13 (patch)
tree: 75c1460117d0fca95736e0d5bb82a470bbaf10c5 /dsa-texts/3.16.51-3+deb8u1
parent: e83e88c188bab68f7ce9df463366df551c85fd55 (diff)
1 files changed, 4 insertions, 4 deletions
diff --git a/dsa-texts/3.16.51-3+deb8u1 b/dsa-texts/3.16.51-3+deb8u1
index d6b356b4..e6b118d4 100644
--- a/dsa-texts/3.16.51-3+deb8u1
+++ b/dsa-texts/3.16.51-3+deb8u1
@@ -99,10 +99,10 @@ CVE-2017-17741
 
 CVE-2017-17805
 
-    Dmitry Vyukov reported that the KVM implementation for x86 would
-    over-read data from memory when emulating an MMIO write if the
-    kvm_mmio tracepoint was enabled.  A guest virtual machine might be
-    able to use this to cause a denial of service (crash).
+    It was discovered that some implementations of the Salsa20 block
+    cipher did not correctly handle zero-length input.  A local user
+    could use this to cause a denial of service (crash) or possibly
+    have other security impact.
 
 CVE-2017-17806
author	Salvatore Bonaccorso <carnil@debian.org>	2018-01-09 20:44:03 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2018-01-09 20:44:03 +0100
commit	d7539af4ff0bf88312ed6436c215672ed1a67a13 (patch)
tree	75c1460117d0fca95736e0d5bb82a470bbaf10c5 /dsa-texts/3.16.51-3+deb8u1
parent	e83e88c188bab68f7ce9df463366df551c85fd55 (diff)