[Secure-testing-commits] r24118 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Oct 22 10:11:47 UTC 2013
Author: jmm
Date: 2013-10-22 10:11:47 +0000 (Tue, 22 Oct 2013)
New Revision: 24118
Modified:
data/CVE/list
Log:
two libvirt issues N/A
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-10-22 09:14:23 UTC (rev 24117)
+++ data/CVE/list 2013-10-22 10:11:47 UTC (rev 24118)
@@ -3874,15 +3874,15 @@
CVE-2013-4401 [unintended API access due to incorrect permissions checks]
RESERVED
- libvirt <unfixed>
- NOTE: introduced in libvirt 1.1.0
+ [squeeze] - libvirt <not-affected> (Introduced in 1.1.0, REMOTE_PROC_CONNECT_DOMAIN_XML_TO|FROM_NATIVE not yet present)
+ [wheezy] - libvirt <not-affected> (Introduced in 1.1.0, REMOTE_PROC_CONNECT_DOMAIN_XML_TO|FROM_NATIVE not yet present)
NOTE: http://libvirt.org/git/?p=libvirt.git;a=commit;h=57687fd6bf7f6e1b3662c52f3f26c06ab19dc96c
- TODO: check
CVE-2013-4400 [virt-login-shell arbitrary file overwrites vulnerability]
RESERVED
- libvirt <unfixed>
- NOTE: introduced in libvirt 1.1.2
+ [squeeze] - libvirt <not-affected> (Introduced in 1.1.2, virt-login-shell not yet present)
+ [wheezy] - libvirt <not-affected> (Introduced in 1.1.2, virt-login-shell not yet present)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1015228#c3
- TODO: check
CVE-2013-4399 [unprivileged user can crash libvirtd when ACLs are enabled]
RESERVED
- libvirt <unfixed>
More information about the Secure-testing-commits
mailing list