[Secure-testing-commits] r30969 - data/CVE

Wed Dec 24 10:29:16 UTC 2014

Author: carnil
Date: 2014-12-24 10:29:16 +0000 (Wed, 24 Dec 2014)
New Revision: 30969

Modified:
   data/CVE/list
Log:
And ... libvirt got already fixed with unstable upload

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2014-12-24 10:27:52 UTC (rev 30968)
+++ data/CVE/list	2014-12-24 10:29:16 UTC (rev 30969)
@@ -4401,13 +4401,13 @@
 	{DSA-3106-1 DLA-121-1}
 	- jasper 1.900.1-debian1-2.3 (bug #773463)
 CVE-2014-8136 (The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 ...)
-	- libvirt <unfixed> (bug #773856)
+	- libvirt 1.2.9-7 (bug #773856)
 	[wheezy] - libvirt <not-affected> (Vulnerable code introduced later)
 	[squeeze] - libvirt <not-affected> (Vulnerable code introduced later)
 	NOTE: Upstream commit: http://libvirt.org/git/?p=libvirt.git;a=commit;h=2bdcd29c713dfedd813c89f56ae98f6f3898313d (v1.2.11-rc2)
 	NOTE: Introduced in http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=abf75aea247e (v1.1.0-rc1)
 CVE-2014-8135 (The storageVolUpload function in storage/storage_driver.c in libvirt ...)
-	- libvirt <unfixed> (bug #773855)
+	- libvirt 1.2.9-7 (bug #773855)
 	[wheezy] - libvirt <not-affected> (Vulnerable code introduced later)
 	[squeeze] - libvirt <not-affected> (Vulnerable code introduced later)
 	NOTE: Upstream fix: http://libvirt.org/git/?p=libvirt.git;a=commit;h=87b9437f8951f9d24f9a85c6bbfff0e54df8c984 (v1.2.11-rc1)
@@ -4427,7 +4427,7 @@
 	NOTE: http://www.libssh.org/2014/12/19/libssh-0-6-4-security-and-bugfix-release/
 CVE-2014-8131 [deadlock and segfault in qemuConnectGetAllDomainStats]
 	RESERVED
-	- libvirt <unfixed> (bug #773858)
+	- libvirt 1.2.9-7 (bug #773858)
 	[wheezy] - libvirt <not-affected> (Vulnerable code introduced later)
 	[squeeze] - libvirt <not-affected> (Vulnerable code introduced later)
 	NOTE: Introduced by http://libvirt.org/git/?p=libvirt.git;a=commit;h=d1bde8ed (v1.2.9-rc1)


