[Secure-testing-commits] r20122 - data/CVE

Sat Sep 8 22:13:06 UTC 2012

Author: geissert
Date: 2012-09-08 22:13:06 +0000 (Sat, 08 Sep 2012)
New Revision: 20122

Modified:
   data/CVE/list
Log:
Update affected packages/versions in sid re last DSAs


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2012-09-08 21:14:22 UTC (rev 20121)
+++ data/CVE/list	2012-09-08 22:13:06 UTC (rev 20122)
@@ -1359,7 +1359,8 @@
 CVE-2012-4411
 	RESERVED
 	{DSA-2543-1}
-	- xen <unfixed>
+	- xen 4.1.3-2
+	- xen-qemu-dm-4.0 <removed>
 CVE-2012-4409
 	RESERVED
 	- mcrypt 2.6.8-1.1
@@ -3368,8 +3369,11 @@
 CVE-2012-3515 [Qemu VT100 emulation vulnerability]
 	RESERVED
 	{DSA-2545-1 DSA-2543-1 DSA-2542-1}
-	- xen <unfixed> (bug #686764)
+	- xen 4.1.3-2 (bug #686764)
 	[squeeze] - xen <not-affected> (Vulnerable code not present)
+	- xen-qemu-dm-4.0 <removed>
+	- qemu <unfixed>
+	- qemu-kvm <unfixed>
 CVE-2012-3514 (OCaml Xml-Light Library before r234 computes hash values without ...)
 	- xml-light <unfixed> (bug #685584)
 CVE-2012-3513 [remote execution as www-data]
@@ -3426,7 +3430,7 @@
 	RESERVED
 CVE-2012-3498 [PHYSDEVOP_map_pirq index vulnerability]
 	RESERVED
-	- xen <unfixed> (bug #686764)
+	- xen 4.1.3-2 (bug #686764)
 	[squeeze] - xen <not-affected> (Vulnerable code not present)
 CVE-2012-3497 [multiple TMEM hypercall vulnerabilities]
 	RESERVED
@@ -3434,15 +3438,15 @@
 CVE-2012-3496 [XENMEM_populate_physmap DoS vulnerability]
 	RESERVED
 	{DSA-2544-1}
-	- xen <unfixed> (bug #686764)
+	- xen 4.1.3-2 (bug #686764)
 CVE-2012-3495 [hypercall physdev_get_free_pirq vulnerability]
 	RESERVED
-	- xen <unfixed> (bug #686764)
+	- xen 4.1.3-2 (bug #686764)
 	[squeeze] - xen <not-affected> (Vulnerable code not present)
 CVE-2012-3494 [hypercall set_debugreg vulnerability]
 	RESERVED
 	{DSA-2544-1}
-	- xen <unfixed> (bug #686764)
+	- xen 4.1.3-2 (bug #686764)
 CVE-2012-3493
 	RESERVED
 CVE-2012-3492
@@ -5473,6 +5477,7 @@
 CVE-2012-2652 (The bdrv_open function in Qemu 1.0 does not properly handle the ...)
 	{DSA-2545-1 DSA-2542-1}
 	- qemu 1.1.0+dfsg-1 (bug #678280)
+	- qemu-kvm <unfixed>
 CVE-2012-2651
 	RESERVED
 CVE-2012-2650


