[Secure-testing-commits] r23562 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Sep 6 06:09:11 UTC 2013
Author: jmm
Date: 2013-09-06 06:09:11 +0000 (Fri, 06 Sep 2013)
New Revision: 23562
Modified:
data/CVE/list
Log:
four xen issues fixed, one is a generic hw limitation
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-06 05:41:16 UTC (rev 23561)
+++ data/CVE/list 2013-09-06 06:09:11 UTC (rev 23562)
@@ -8208,10 +8208,11 @@
RESERVED
- kdeplasma-addons <not-affected> (only affects if incomplete patch for CVE-2013-2120 is applied)
CVE-2013-2212 (The vmx_set_uc_mode function in Xen 3.3 through 4.3, when disabling ...)
- - xen <unfixed>
+ - xen <unfixed> (unimportant)
+ NOTE: Hardware design flaw, no software solution
NOTE: http://xenbits.xen.org/xsa/advisory-60.html
CVE-2013-2211 (The libxenlight (libxl) toolstack library in Xen 4.0.x, 4.1.x, and ...)
- - xen <unfixed>
+ - xen 4.3.0-1
CVE-2013-2210 (Heap-based buffer overflow in the XML Signature Reference ...)
{DSA-2717-1}
- xml-security-c 1.6.1-7 (bug #714241)
@@ -8259,11 +8260,11 @@
CVE-2013-2197 (The Login Security module 6.x-1.x before 6.x-1.3 and 7.x-1.x before ...)
NOT-FOR-US: Login Security Drupal contributed module
CVE-2013-2196 (Multiple unspecified vulnerabilities in the Elf parser (libelf) in Xen ...)
- - xen <unfixed>
+ - xen 4.3.0-1
CVE-2013-2195 (The Elf parser (libelf) in Xen 4.2.x and earlier allow local guest ...)
- - xen <unfixed>
+ - xen 4.3.0-1
CVE-2013-2194 (Multiple integer overflows in the Elf parser (libelf) in Xen 4.2.x and ...)
- - xen <unfixed>
+ - xen 4.3.0-1
CVE-2013-2193 [Apache HBase Man in the Middle Vulnerability]
RESERVED
NOT-FOR-US: Apache HBase
More information about the Secure-testing-commits
mailing list