[Secure-testing-commits] r36104 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Aug 16 12:49:20 UTC 2015
Author: jmm
Date: 2015-08-16 12:49:20 +0000 (Sun, 16 Aug 2015)
New Revision: 36104
Modified:
data/CVE/list
Log:
bug for xen
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-16 12:24:32 UTC (rev 36103)
+++ data/CVE/list 2015-08-16 12:49:20 UTC (rev 36104)
@@ -4531,12 +4531,12 @@
NOTE: https://github.com/imotov/elasticsearch/commit/f5cfb2a1869d1a52930cbd3138278a6e2c1b22e6
CVE-2015-4164 (The compat_iret function in Xen 3.1 through 4.5 iterates the wrong way ...)
{DSA-3286-1}
- - xen <unfixed>
+ - xen <unfixed> (bug #795721)
[squeeze] - xen <end-of-life> (Not supported in Squeeze LTS)
NOTE: http://xenbits.xen.org/xsa/advisory-136.html
CVE-2015-4163 (GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the ...)
{DSA-3286-1}
- - xen <unfixed>
+ - xen <unfixed> (bug #795721)
[wheezy] - xen <not-affected> (Xen 4.2 onwards are vulnerable)
[squeeze] - xen <not-affected> (Xen 4.2 onwards are vulnerable)
NOTE: http://xenbits.xen.org/xsa/advisory-134.html
@@ -7186,7 +7186,7 @@
CVE-2015-3260
RESERVED
CVE-2015-3259 (Stack-based buffer overflow in the xl command line utility in Xen ...)
- - xen <unfixed> (low)
+ - xen <unfixed> (low; bug #795721)
[jessie] - xen <no-dsa> (Can be fixed along with a future DSA)
[wheezy] - xen <no-dsa> (Can be fixed along with a future DSA)
[squeeze] - xen <not-affected> (xl not shipped in Squeeze)
More information about the Secure-testing-commits
mailing list