[Secure-testing-commits] r22467 - data/CVE
Michael Gilbert
mgilbert at alioth.debian.org
Tue Jun 4 00:10:00 UTC 2013
Author: mgilbert
Date: 2013-06-04 00:10:00 +0000 (Tue, 04 Jun 2013)
New Revision: 22467
Modified:
data/CVE/list
Log:
qemu info
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-03 21:55:48 UTC (rev 22466)
+++ data/CVE/list 2013-06-04 00:10:00 UTC (rev 22467)
@@ -4114,7 +4114,10 @@
RESERVED
NOT-FOR-US: WP Super Cache
CVE-2013-2007 (The qemu guest agent in Qemu 1.4.1 and earlier, as used by Xen, when ...)
- - qemu <not-affected> (qemu guest agent, only from version in experimental on)
+ - qemu 1.5.0+dfsg-1
+ [wheezy] - qemu <not-affected> (qemu guest agent introduced in 1.4)
+ [squeeze] - qemu <not-affected> (qemu guest agent introduced in 1.4)
+ - qemu-kvm <not-affected> (qemu guest agent introduced in 1.4)
CVE-2013-2006 (OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode ...)
- keystone <undetermined>
NOTE: https://review.openstack.org/#/c/26826/2/keystone/common/config.py
@@ -9179,9 +9182,9 @@
[squeeze] - eglibc <no-dsa> (Minor issue)
NOTE: http://seclists.org/oss-sec/2013/q1/202
CVE-2013-0241 (The QXL display driver in QXL Virtual GPU 0.1.0 allows local users to ...)
- - xserver-xorg-video-qxl 0.0.17-1 (bug #699396)
- NOTE: http://seclists.org/oss-sec/2013/q1/204
- TODO: check, whether this affects Stable, does qemu-KVM in Stable enable SPICE?
+ - xserver-xorg-video-qxl 0.0.17-1 (bug #699396)
+ [squeeze] - xserver-xorg-video-qxl <no-dsa> (minor denial of service issue)
+ NOTE: squeeze is affected since it could be a guest of an affected qemu-kvm version
CVE-2013-0240 (Gnome Online Accounts (GOA) 3.4.x, 3.6.x before 3.6.3, and 3.7.x ...)
- gnome-online-accounts 3.4.2-2 (bug #699825)
CVE-2013-0239 (Apache CXF before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3, ...)
More information about the Secure-testing-commits
mailing list