[Secure-testing-commits] r30401 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Nov 28 06:34:13 UTC 2014 

Author: jmm
Date: 2014-11-28 06:34:13 +0000 (Fri, 28 Nov 2014)
New Revision: 30401

Modified:
   data/CVE/list
Log:
xen fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-28 06:14:01 UTC (rev 30400)
+++ data/CVE/list	2014-11-28 06:34:13 UTC (rev 30401)
@@ -137,7 +137,7 @@
 CVE-2014-8992
 	RESERVED
 CVE-2014-9030 [XSA-113]
-	- xen <unfixed> (bug #770230)
+	- xen 4.4.1-4 (low; bug #770230)
 	[squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
 CVE-2014-9015 [Session hijacking]
 	{DSA-3075-1}
@@ -1548,12 +1548,12 @@
 CVE-2014-8597
 	RESERVED
 CVE-2014-8596 (Multiple SQL injection vulnerabilities in PHP-Fusion 7.02.07 allow ...)
-	TODO: check
+	- xen 4.4.1-4 (low; bug #770230)
 CVE-2014-8595 (arch/x86/x86_emulate/x86_emulate.c in Xen 3.2.1 through 4.4.x does not ...)
 	- xen <unfixed> (bug #770230)
 	[squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
 CVE-2014-8594 (The do_mmu_update function in arch/x86/mm.c in Xen 4.x through 4.4.x ...)
-	- xen <unfixed> (bug #770230)
+	- xen 4.4.1-4 (low; bug #770230)
 	[squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
 CVE-2014-8593 (Multiple cross-site scripting (XSS) vulnerabilities in Allomani ...)
 	NOT-FOR-US: Allomani Weblinks
@@ -9760,7 +9760,7 @@
 CVE-2014-5150
 	RESERVED
 CVE-2014-5149 (Certain MMU virtualization operations in Xen 4.2.x through 4.4.x, when ...)
-	- xen <unfixed> (low; bug #770230)
+	- xen 4.4.1-4 (low; bug #770230)
 	[wheezy] - xen <no-dsa> (Minor issue, too intrusive to backport)
 	[squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
 CVE-2014-5148 (Xen 4.4.x, when running on an ARM system and "handling an unknown ...)
@@ -9772,7 +9772,7 @@
 	[wheezy] - xen <not-affected> (Vulnerable code not present)
 	[squeeze] - xen <not-affected> (Vulnerable code not present)
 CVE-2014-5146 (Certain MMU virtualization operations in Xen 4.2.x through 4.4.x ...)
-	- xen <unfixed> (low; bug #770230)
+	- xen 4.4.1-4 (low; bug #770230)
 	[wheezy] - xen <no-dsa> (Minor issue, too intrusive to backport)
 	[squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
 CVE-2014-5145

More information about the Secure-testing-commits mailing list