[Secure-testing-commits] r33402 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Apr 6 20:40:11 UTC 2015
Author: carnil
Date: 2015-04-06 20:40:11 +0000 (Mon, 06 Apr 2015)
New Revision: 33402
Modified:
data/CVE/list
Log:
Add fixed version for xen issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-06 20:27:21 UTC (rev 33401)
+++ data/CVE/list 2015-04-06 20:40:11 UTC (rev 33402)
@@ -252,10 +252,10 @@
CVE-2015-2755 (Multiple cross-site request forgery (CSRF) vulnerabilities in the AB ...)
NOT-FOR-US: AB Google Map Travel (AB-MAP) plugin for WordPress
CVE-2015-2752 (The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, ...)
- - xen <unfixed> (bug #781620)
+ - xen 4.4.1-9 (bug #781620)
NOTE: http://xenbits.xen.org/xsa/advisory-125.html
CVE-2015-2751 (Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, ...)
- - xen <unfixed> (bug #781620)
+ - xen 4.4.1-9 (bug #781620)
[wheezy] - xen <not-affected> (Affected functionality introduced in 4.2)
NOTE: http://xenbits.xen.org/xsa/advisory-127.html
CVE-2015-2748 (Websense TRITON AP-WEB before 8.0.0 does not properly restrict access ...)
@@ -1844,7 +1844,7 @@
[squeeze] - tcpdump <not-affected> (Vulnerable code not present)
NOTE: http://www.ca.tcpdump.org/cve/0002-test-case-files-for-CVE-2015-2153-2154-2155.patch
CVE-2015-2152 (Xen 4.5.x and earlier enables certain default backends when emulating ...)
- - xen <unfixed> (low; bug #780975)
+ - xen 4.4.1-9 (low; bug #780975)
[wheezy] - xen <no-dsa> (Can be fixed along with a future DSA)
[squeeze] - xen <end-of-life> (Not supported in Squeeze LTS)
NOTE: http://xenbits.xen.org/xsa/advisory-119.html
More information about the Secure-testing-commits
mailing list