[Secure-testing-commits] r25806 - data/CVE

Thu Feb 20 13:57:02 UTC 2014

Author: jmm
Date: 2014-02-20 13:57:02 +0000 (Thu, 20 Feb 2014)
New Revision: 25806

Modified:
   data/CVE/list
Log:
qemu no-dsa


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2014-02-20 13:47:09 UTC (rev 25805)
+++ data/CVE/list	2014-02-20 13:57:02 UTC (rev 25806)
@@ -6492,8 +6492,10 @@
 	[squeeze] - xen <not-affected> (4.2.x and later are vulnerable)
 CVE-2013-6399
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-6398 (The virtual router in Apache CloudStack before 4.2.1 does not preserve ...)
 	NOT-FOR-US: Apache CloudStack
 CVE-2013-6397 (Directory traversal vulnerability in SolrResourceLoader in Apache Solr ...)
@@ -10967,70 +10969,100 @@
 	REJECTED
 CVE-2013-4542
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4541
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4540
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4539
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4538
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4537
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4536
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4535
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4534
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4533
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4532
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4531
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4530
 	RESERVED
 	- qemu <unfixed> (bug #739589)
 	- qemu-kvm <removed>
 CVE-2013-4529
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4528
 	REJECTED
 CVE-2013-4527
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4526
 	RESERVED
-	- qemu <unfixed> (bug #739589)
-	- qemu-kvm <removed>
+	- qemu <unfixed> (low; bug #739589)
+	[wheezy] - qemu <no-dsa> (Minor issue, hardly exploitable in practice)
+	- qemu-kvm <removed> (low)
+	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 CVE-2013-4525 (Cross-site scripting (XSS) vulnerability in ...)
 	- moodle 2.5.3-1
 	[squeeze] - moodle <not-affected> (Vulnerable code not present)


