[Secure-testing-commits] r23776 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Wed Sep 25 12:29:28 UTC 2013
Author: carnil
Date: 2013-09-25 12:29:28 +0000 (Wed, 25 Sep 2013)
New Revision: 23776
Modified:
data/CVE/list
Log:
Add CVE-2013-1442/xen
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-25 09:04:16 UTC (rev 23775)
+++ data/CVE/list 2013-09-25 12:29:28 UTC (rev 23776)
@@ -11546,8 +11546,11 @@
CVE-2013-1443 (The authentication framework (django.contrib.auth) in Django 1.4.x ...)
{DSA-2758-1}
- python-django 1.5.4-1 (bug #723043)
-CVE-2013-1442
+CVE-2013-1442 [Information leak on AVX and/or LWP capable CPUs]
RESERVED
+ - xen <unfixed>
+ TODO: check, see NOTE
+ NOTE: advisory say: In Xen 4.0.2 through 4.0.4 as well as in Xen 4.1.x XSAVE support is disabled by default
CVE-2013-1441 (econvert in ExactImage 0.8.9 and earlier does not properly initialize ...)
{DSA-2754-1}
- exactimage 0.8.9-2
More information about the Secure-testing-commits
mailing list