[Secure-testing-commits] r34817 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Tue Jun 9 13:02:35 UTC 2015
Author: hertzog
Date: 2015-06-09 13:02:34 +0000 (Tue, 09 Jun 2015)
New Revision: 34817
Modified:
data/CVE/list
Log:
Mark qemu/xen CVE as end-of-life on squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-06-09 13:02:27 UTC (rev 34816)
+++ data/CVE/list 2015-06-09 13:02:34 UTC (rev 34817)
@@ -251,29 +251,37 @@
CVE-2015-4106 [Unmediated PCI register access in qemu]
RESERVED
- qemu 1:2.3+dfsg-5 (bug #787547)
+ [squeeze] - qemu <end-of-life> (Not supported in Squeeze LTS)
- qemu-kvm <not-affected> (Vulnerable code not present)
- xen 4.4.0-1
+ [squeeze] - xen <end-of-life> (Not supported in Squeeze LTS)
NOTE: Xen switched to qemu-system in 4.4.0-1
NOTE: http://xenbits.xen.org/xsa/advisory-131.html
CVE-2015-4105 [Guest triggerable qemu MSI-X pass-through error messages]
RESERVED
- qemu 1:2.3+dfsg-5 (bug #787547)
+ [squeeze] - qemu <end-of-life> (Not supported in Squeeze LTS)
- qemu-kvm <not-affected> (Vulnerable code not present)
- xen 4.4.0-1
+ [squeeze] - xen <end-of-life> (Not supported in Squeeze LTS)
NOTE: Xen switched to qemu-system in 4.4.0-1
NOTE: http://xenbits.xen.org/xsa/advisory-130.html
CVE-2015-4104 [PCI MSI mask bits inadvertently exposed to guests]
RESERVED
- qemu 1:2.3+dfsg-5 (bug #787547)
+ [squeeze] - qemu <end-of-life> (Not supported in Squeeze LTS)
- qemu-kvm <not-affected> (Vulnerable code not present)
- xen 4.4.0-1
+ [squeeze] - xen <end-of-life> (Not supported in Squeeze LTS)
NOTE: Xen switched to qemu-system in 4.4.0-1
NOTE: http://xenbits.xen.org/xsa/advisory-129.html
CVE-2015-4103 [Potential unintended writes to host MSI message data field via qemu]
RESERVED
- qemu 1:2.3+dfsg-5 (bug #787547)
+ [squeeze] - qemu <end-of-life> (Not supported in Squeeze LTS)
- qemu-kvm <not-affected> (Vulnerable code not present)
- xen 4.4.0-1
+ [squeeze] - xen <end-of-life> (Not supported in Squeeze LTS)
NOTE: Xen switched to qemu-system in 4.4.0-1
NOTE: http://xenbits.xen.org/xsa/advisory-128.html
CVE-2015-4102
More information about the Secure-testing-commits
mailing list