[Secure-testing-commits] r35867 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Aug 3 17:57:09 UTC 2015
Author: carnil
Date: 2015-08-03 17:57:09 +0000 (Mon, 03 Aug 2015)
New Revision: 35867
Modified:
data/CVE/list
Log:
Update CVE-2015-5166/xen
Note for reviewers: please double check this update for the xen part.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-03 17:41:28 UTC (rev 35866)
+++ data/CVE/list 2015-08-03 17:57:09 UTC (rev 35867)
@@ -1363,7 +1363,10 @@
[squeeze] - qemu <not-affected> (Vulnerable code not present)
- qemu-kvm <removed>
[squeeze] - qemu-kvm <not-affected> (Vulnerable code not present)
- - xen <unfixed>
+ - xen 4.4.0-1
+ [wheezy] - xen <not-affected> (Vulnerable code not present)
+ [squeeze] - xen <not-affected> (Vulnerable code not present)
+ NOTE: Xen switched to qemu-system in 4.4.0-1
NOTE: pci_piix3_xen_ide_unplug introduced in http://git.qemu.org/?p=qemu.git;a=commitdiff;h=679f4f8b178e7c66fbc2f39c905374ee8663d5d8 (v1.0-rc0)
NOTE: http://xenbits.xen.org/xsa/advisory-139.html
TODO: check affected versions
More information about the Secure-testing-commits
mailing list