[Secure-testing-commits] r23940 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Oct 10 12:35:05 UTC 2013
Author: carnil
Date: 2013-10-10 12:35:05 +0000 (Thu, 10 Oct 2013)
New Revision: 23940
Modified:
data/CVE/list
Log:
Add CVE-2013-4370/xen
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-10-10 12:33:41 UTC (rev 23939)
+++ data/CVE/list 2013-10-10 12:35:05 UTC (rev 23940)
@@ -3595,8 +3595,11 @@
NOT-FOR-US: JBoss Fuse
CVE-2013-4371
RESERVED
-CVE-2013-4370
+CVE-2013-4370 [misplaced free in ocaml xc_vcpu_getaffinity stub]
RESERVED
+ - xen <unfixed>
+ [wheezy] - xen <not-affected> (Vulnerable code only present from 4.2 onwards)
+ [squeeze] - xen <not-affected> (Vulnerable code only present from 4.2 onwards)
CVE-2013-4369 [possible null dereference when parsing vif ratelimiting info]
RESERVED
- xen <unfixed>
More information about the Secure-testing-commits
mailing list