[Secure-testing-commits] r55142 - data/CVE
Guido Guenther
agx at moszumanska.debian.org
Mon Aug 28 07:26:22 UTC 2017
Author: agx
Date: 2017-08-28 07:26:22 +0000 (Mon, 28 Aug 2017)
New Revision: 55142
Modified:
data/CVE/list
Log:
lts: Mark CVE-2017-10911 as no-dsa
Wheezy's xen does not use the qemu{-,kvm} packages but provides
it's own copy (which needs have this CVE fixed).
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-28 06:33:11 UTC (rev 55141)
+++ data/CVE/list 2017-08-28 07:26:22 UTC (rev 55142)
@@ -10459,6 +10459,9 @@
{DSA-3945-1 DSA-3927-1 DSA-3920-1}
- linux 4.11.11-1
- qemu 1:2.8+dfsg-7 (bug #869706)
+ [wheezy] - qemu <no-dsa> (Wheezy's xen uses an embedded qemu copy)
+ - qemu-kvm <removed>
+ [wheezy] - qemu-kvm <not-affected> (Wheezy's xen uses an embedded qemu copy)
NOTE: https://xenbits.xen.org/xsa/advisory-216.html
CVE-2017-1000381 (The c-ares function `ares_parse_naptr_reply()`, which is used for ...)
{DLA-998-1}
More information about the Secure-testing-commits
mailing list