[Secure-testing-commits] r51456 - in data: . CVE DSA
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue May 9 20:49:32 UTC 2017
Author: jmm
Date: 2017-05-09 20:49:32 +0000 (Tue, 09 May 2017)
New Revision: 51456
Modified:
data/CVE/list
data/DSA/list
data/dsa-needed.txt
Log:
xen DSA
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-09 19:57:34 UTC (rev 51455)
+++ data/CVE/list 2017-05-09 20:49:32 UTC (rev 51456)
@@ -993,13 +993,19 @@
RESERVED
CVE-2017-XXXX [possible memory corruption via failsafe callback / XSA-215]
- xen 4.8.0~rc3-1 (bug #861662)
+ [jessie] - xen 4.4.1-9+deb8u9
NOTE: https://xenbits.xen.org/xsa/advisory-215.html
+ NOTE: workaround for DSA 3847
CVE-2017-XXXX [grant transfer allows PV guest to elevate privileges / XSA-214]
- xen 4.8.1-1+deb9u1 (bug #861660)
+ [jessie] - xen 4.4.1-9+deb8u9
NOTE: https://xenbits.xen.org/xsa/advisory-214.html
+ NOTE: workaround for DSA 3847
CVE-2017-XXXX [64bit PV guest breakout / XSA-213]
- xen 4.8.1-1+deb9u1 (bug #861659)
+ [jessie] - xen 4.4.1-9+deb8u9
NOTE: https://xenbits.xen.org/xsa/advisory-213.html
+ NOTE: workaround for DSA 3847
CVE-2017-8418 (RuboCop 0.48.1 and earlier does not use /tmp in safe way, allowing ...)
- rubocop <unfixed>
NOTE: https://github.com/bbatsov/rubocop/issues/4336
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2017-05-09 19:57:34 UTC (rev 51455)
+++ data/DSA/list 2017-05-09 20:49:32 UTC (rev 51456)
@@ -1,3 +1,6 @@
+[09 May 2017] DSA-3847-1 xen - security update
+ {CVE-2016-9932 CVE-2016-10013 CVE-2016-10024 CVE-2017-7228}
+ [jessie] - xen 4.4.1-9+deb8u9
[09 May 2017] DSA-3846-1 libytnef - security update
{CVE-2017-6298 CVE-2017-6299 CVE-2017-6300 CVE-2017-6301 CVE-2017-6302 CVE-2017-6303 CVE-2017-6304 CVE-2017-6305 CVE-2017-6306 CVE-2017-6800 CVE-2017-6801 CVE-2017-6802}
[jessie] - libytnef 1.5-6+deb8u1
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2017-05-09 19:57:34 UTC (rev 51455)
+++ data/dsa-needed.txt 2017-05-09 20:49:32 UTC (rev 51456)
@@ -42,6 +42,3 @@
--
wireshark
--
-xen
- Maintainer is preparing update
---
More information about the Secure-testing-commits
mailing list