[Secure-testing-commits] r51456 - in data: . CVE DSA

Moritz Muehlenhoff jmm at moszumanska.debian.org
Tue May 9 20:49:32 UTC 2017


Author: jmm
Date: 2017-05-09 20:49:32 +0000 (Tue, 09 May 2017)
New Revision: 51456

Modified:
   data/CVE/list
   data/DSA/list
   data/dsa-needed.txt
Log:
xen DSA


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-09 19:57:34 UTC (rev 51455)
+++ data/CVE/list	2017-05-09 20:49:32 UTC (rev 51456)
@@ -993,13 +993,19 @@
 	RESERVED
 CVE-2017-XXXX [possible memory corruption via failsafe callback / XSA-215]
 	- xen 4.8.0~rc3-1 (bug #861662)
+	[jessie] - xen 4.4.1-9+deb8u9
 	NOTE: https://xenbits.xen.org/xsa/advisory-215.html
+	NOTE: workaround for DSA 3847
 CVE-2017-XXXX [grant transfer allows PV guest to elevate privileges / XSA-214]
 	- xen 4.8.1-1+deb9u1 (bug #861660)
+	[jessie] - xen 4.4.1-9+deb8u9
 	NOTE: https://xenbits.xen.org/xsa/advisory-214.html
+	NOTE: workaround for DSA 3847
 CVE-2017-XXXX [64bit PV guest breakout / XSA-213]
 	- xen 4.8.1-1+deb9u1 (bug #861659)
+	[jessie] - xen 4.4.1-9+deb8u9
 	NOTE: https://xenbits.xen.org/xsa/advisory-213.html
+	NOTE: workaround for DSA 3847
 CVE-2017-8418 (RuboCop 0.48.1 and earlier does not use /tmp in safe way, allowing ...)
 	- rubocop <unfixed>
 	NOTE: https://github.com/bbatsov/rubocop/issues/4336

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2017-05-09 19:57:34 UTC (rev 51455)
+++ data/DSA/list	2017-05-09 20:49:32 UTC (rev 51456)
@@ -1,3 +1,6 @@
+[09 May 2017] DSA-3847-1 xen - security update
+	{CVE-2016-9932 CVE-2016-10013 CVE-2016-10024 CVE-2017-7228}
+	[jessie] - xen 4.4.1-9+deb8u9
 [09 May 2017] DSA-3846-1 libytnef - security update
 	{CVE-2017-6298 CVE-2017-6299 CVE-2017-6300 CVE-2017-6301 CVE-2017-6302 CVE-2017-6303 CVE-2017-6304 CVE-2017-6305 CVE-2017-6306 CVE-2017-6800 CVE-2017-6801 CVE-2017-6802}
 	[jessie] - libytnef 1.5-6+deb8u1

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt	2017-05-09 19:57:34 UTC (rev 51455)
+++ data/dsa-needed.txt	2017-05-09 20:49:32 UTC (rev 51456)
@@ -42,6 +42,3 @@
 --
 wireshark
 --
-xen
-  Maintainer is preparing update
---




More information about the Secure-testing-commits mailing list