[Secure-testing-commits] r54269 - data/CVE

Guido Guenther agx at moszumanska.debian.org
Fri Aug 4 15:59:57 UTC 2017


Author: agx
Date: 2017-08-04 15:59:57 +0000 (Fri, 04 Aug 2017)
New Revision: 54269

Modified:
   data/CVE/list
Log:
lts: xen not affected by CVE-2017-10917

Code introduced in a post 4.3 refactor

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-04 15:25:30 UTC (rev 54268)
+++ data/CVE/list	2017-08-04 15:59:57 UTC (rev 54269)
@@ -6757,6 +6757,7 @@
 	NOTE: https://xenbits.xen.org/xsa/advisory-222.html
 CVE-2017-10917 (Xen through 4.8.x does not validate the port numbers of polled event ...)
 	- xen <unfixed>
+	[wheezy] - xen <not-affected> (Vulnerable code not present)
 	NOTE: https://xenbits.xen.org/xsa/advisory-221.html
 CVE-2017-10916 (The vCPU context-switch implementation in Xen through 4.8.x improperly ...)
 	- xen <unfixed>




More information about the Secure-testing-commits mailing list