[Secure-testing-commits] r28193 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Aug 10 20:36:50 UTC 2014 

Author: carnil
Date: 2014-08-10 20:36:50 +0000 (Sun, 10 Aug 2014)
New Revision: 28193

Modified:
   data/CVE/list
Log:
Add bug references

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-08-10 20:34:55 UTC (rev 28192)
+++ data/CVE/list	2014-08-10 20:36:50 UTC (rev 28193)
@@ -2964,11 +2964,11 @@
 	[wheezy] - pulseaudio <no-dsa> (Minor issue)
 	NOTE: http://lists.freedesktop.org/archives/pulseaudio-discuss/2014-May/020740.html
 CVE-2014-3968 (The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x allows ...)
-	- xen <unfixed>
+	- xen <unfixed> (bug #757724)
 	[wheezy] - xen <not-affected> (Xen versions from 4.2 onwards are vulnerable)
 	[squeeze] - xen <not-affected> (Xen versions from 4.2 onwards are vulnerable)
 CVE-2014-3967 (The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x does not ...)
-	- xen <unfixed>
+	- xen <unfixed> (bug #757724)
 	[wheezy] - xen <not-affected> (Xen versions from 4.2 onwards are vulnerable)
 	[squeeze] - xen <not-affected> (Xen versions from 4.2 onwards are vulnerable)
 CVE-2014-3966 (Cross-site scripting (XSS) vulnerability in Special:PasswordReset in ...)
@@ -5025,7 +5025,7 @@
 CVE-2014-3125 (Xen 4.4.x, when running on an ARM system, does not properly context ...)
 	- xen <not-affected> (Only 32- and 64-bit ARM systems are affected from Xen 4.4 onwards)
 CVE-2014-3124 (The HVMOP_set_mem_type control in Xen 4.1 through 4.4.x allows local ...)
-	- xen <unfixed>
+	- xen <unfixed> (bug #757724)
 	[squeeze] - xen <not-affected> (Xen versions from 4.1 onwards are vulnerable)
 CVE-2014-3123 (Cross-site scripting (XSS) vulnerability in admin/manage-images.php in ...)
 	NOT-FOR-US: Wordpress plugin
@@ -6597,7 +6597,7 @@
 CVE-2009-5139
 	RESERVED
 CVE-2014-2599 (The HVMOP_set_mem_access HVM control operations in Xen 4.1.x for ...)
-	- xen <unfixed>
+	- xen <unfixed> (bug #757724)
 	[squeeze] - xen <not-affected> (Only affects 4.1 and later)
 CVE-2014-2585 (ownCloud before 5.0.15 and 6.x before 6.0.2, when the file_external ...)
 	- owncloud 6.0.2+dfsg-1

More information about the Secure-testing-commits mailing list