[Secure-testing-commits] r21471 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Mar 1 19:27:18 UTC 2013
Author: jmm
Date: 2013-03-01 19:27:18 +0000 (Fri, 01 Mar 2013)
New Revision: 21471
Modified:
data/CVE/list
Log:
two xen issues don't affect the xen srcpkg in stable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-03-01 19:10:50 UTC (rev 21470)
+++ data/CVE/list 2013-03-01 19:27:18 UTC (rev 21471)
@@ -6023,6 +6023,7 @@
- qemu 1.1.2+dfsg-4 (bug #696051)
- qemu-kvm 1.1.2+dfsg-4 (bug #696051)
- xen 4.1.3-8
+ [squeeze] - xen <not-affected> (In Squeeze the code is in the package xen-qemu-dm-4.0)
NOTE: http://www.openwall.com/lists/oss-security/2012/12/30/1
CVE-2012-6074 (Cross-site scripting (XSS) vulnerability in CloudBees Jenkins before ...)
- jenkins 1.447.2+dfsg-3 (bug #696816)
@@ -10813,6 +10814,7 @@
{DSA-2543-1}
- xen 4.1.3-2
- xen-qemu-dm-4.0 <removed>
+ [squeeze] - xen <not-affected> (In Squeeze the code is in the package xen-qemu-dm-4.0)
CVE-2012-4409 (Stack-based buffer overflow in the check_file_head function in extra.c ...)
- mcrypt 2.6.8-1.1
[squeeze] - mcrypt <no-dsa> (minor issue, it doesn't affect libmcrypt)
More information about the Secure-testing-commits
mailing list