[Secure-testing-commits] r17162 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Sep 2 13:58:35 UTC 2011
Author: jmm
Date: 2011-09-02 13:58:34 +0000 (Fri, 02 Sep 2011)
New Revision: 17162
Modified:
data/CVE/list
Log:
new Xen issue (oldstable only)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-09-02 06:10:45 UTC (rev 17161)
+++ data/CVE/list 2011-09-02 13:58:34 UTC (rev 17162)
@@ -1076,8 +1076,10 @@
- xpdf 3.02-19 (low; bug #635849)
[lenny] - xpdf <no-dsa> (zxpdf script is indeed affected, but it's not associated with pdf handling by default, so not a concern for remote abuse)
[squeeze] - xpdf <no-dsa> (zxpdf script is indeed affected, but it's not associated with pdf handling by default, so not a concern for remote abuse)
-CVE-2011-2901
+CVE-2011-2901 Xen <= 3.3 DoS due to incorrect virtual address validation
RESERVED
+ - xen <not-affected> (Only affects Xen <= 3.3)
+ - xen-3 <removed>
CVE-2011-2900 (Stack-based buffer overflow in the (1) put_dir function in mongoose.c ...)
NOT-FOR-US: Mongoose
CVE-2011-2899
More information about the Secure-testing-commits
mailing list