[Secure-testing-commits] r51551 - in data: CVE DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu May 11 19:37:00 UTC 2017
Author: carnil
Date: 2017-05-11 19:36:59 +0000 (Thu, 11 May 2017)
New Revision: 51551
Modified:
data/CVE/list
data/DSA/list
Log:
Update xen XSA -> CVE mappings
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-11 19:06:20 UTC (rev 51550)
+++ data/CVE/list 2017-05-11 19:36:59 UTC (rev 51551)
@@ -1100,21 +1100,15 @@
RESERVED
CVE-2015-9056
RESERVED
-CVE-2017-XXXX [possible memory corruption via failsafe callback / XSA-215]
+CVE-2017-8905 [possible memory corruption via failsafe callback / XSA-215]
- xen 4.8.0~rc3-1 (bug #861662)
- [jessie] - xen 4.4.1-9+deb8u9
NOTE: https://xenbits.xen.org/xsa/advisory-215.html
- NOTE: workaround for DSA 3847
-CVE-2017-XXXX [grant transfer allows PV guest to elevate privileges / XSA-214]
+CVE-2017-8904 [grant transfer allows PV guest to elevate privileges / XSA-214]
- xen 4.8.1-1+deb9u1 (bug #861660)
- [jessie] - xen 4.4.1-9+deb8u9
NOTE: https://xenbits.xen.org/xsa/advisory-214.html
- NOTE: workaround for DSA 3847
-CVE-2017-XXXX [64bit PV guest breakout / XSA-213]
+CVE-2017-8903 [64bit PV guest breakout / XSA-213]
- xen 4.8.1-1+deb9u1 (bug #861659)
- [jessie] - xen 4.4.1-9+deb8u9
NOTE: https://xenbits.xen.org/xsa/advisory-213.html
- NOTE: workaround for DSA 3847
CVE-2017-8418 (RuboCop 0.48.1 and earlier does not use /tmp in safe way, allowing ...)
- rubocop <unfixed>
NOTE: https://github.com/bbatsov/rubocop/issues/4336
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2017-05-11 19:06:20 UTC (rev 51550)
+++ data/DSA/list 2017-05-11 19:36:59 UTC (rev 51551)
@@ -2,7 +2,7 @@
{CVE-2017-8386}
[jessie] - git 1:2.1.4-2.1+deb8u3
[09 May 2017] DSA-3847-1 xen - security update
- {CVE-2016-9932 CVE-2016-10013 CVE-2016-10024 CVE-2017-7228}
+ {CVE-2016-9932 CVE-2016-10013 CVE-2016-10024 CVE-2017-7228 CVE-2017-8903 CVE-2017-8904 CVE-2017-8905}
[jessie] - xen 4.4.1-9+deb8u9
[09 May 2017] DSA-3846-1 libytnef - security update
{CVE-2017-6298 CVE-2017-6299 CVE-2017-6300 CVE-2017-6301 CVE-2017-6302 CVE-2017-6303 CVE-2017-6304 CVE-2017-6305 CVE-2017-6306 CVE-2017-6800 CVE-2017-6801 CVE-2017-6802}
More information about the Secure-testing-commits
mailing list