[Secure-testing-commits] r55732 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Sep 13 13:23:21 UTC 2017
Author: jmm
Date: 2017-09-13 13:23:21 +0000 (Wed, 13 Sep 2017)
New Revision: 55732
Modified:
data/CVE/list
Log:
mark a few minor xen no-dsa issues for jessie as ignored
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-13 11:38:22 UTC (rev 55731)
+++ data/CVE/list 2017-09-13 13:23:21 UTC (rev 55732)
@@ -24504,7 +24504,7 @@
NOTE: https://xenbits.xen.org/xsa/advisory-207.html
CVE-2017-XXXX [XSA-206: xenstore denial of service via repeated update]
- xen 4.8.1-1 (bug #860565)
- [jessie] - xen <no-dsa> (Too intrusive to backport)
+ [jessie] - xen <ignored> (Too intrusive to backport)
NOTE: https://xenbits.xen.org/xsa/advisory-206.html
CVE-2017-5994 (Heap-based buffer overflow in the vrend_create_vertex_elements_state ...)
- virglrenderer 0.6.0-1 (bug #858255)
@@ -34008,26 +34008,26 @@
NOTE: https://git.libav.org/?p=libav.git;a=commit;h=f106f74206e69e9056130da8bddffc39f3878ac3 (pre 11.9)
CVE-2016-9818 (Xen through 4.7.x allows local ARM guest OS users to cause a denial of ...)
- xen 4.8.0-1
- [jessie] - xen <no-dsa> (Minor issue)
+ [jessie] - xen <ignored> (Minor issue)
[wheezy] - xen <not-affected> (ARM support introduced in 4.4)
NOTE: https://xenbits.xen.org/xsa/advisory-201.html
NOTE: CVE for fix via patch https://xenbits.xen.org/xsa/xsa201-4.patch
CVE-2016-9817 (Xen through 4.7.x allows local ARM guest OS users to cause a denial of ...)
- xen 4.8.0-1
- [jessie] - xen <no-dsa> (Minor issue)
+ [jessie] - xen <ignored> (Minor issue)
[wheezy] - xen <not-affected> (ARM support introduced in 4.4)
NOTE: https://xenbits.xen.org/xsa/advisory-201.html
NOTE: CVE for fix via patch https://xenbits.xen.org/xsa/xsa201-3.patch
NOTE: or https://xenbits.xen.org/xsa/xsa201-3-4.7.patch
CVE-2016-9816 (Xen through 4.7.x allows local ARM guest OS users to cause a denial of ...)
- xen 4.8.0-1
- [jessie] - xen <no-dsa> (Minor issue)
+ [jessie] - xen <ignored> (Minor issue)
[wheezy] - xen <not-affected> (ARM support introduced in 4.4)
NOTE: https://xenbits.xen.org/xsa/advisory-201.html
NOTE: CVE for fix via patch https://xenbits.xen.org/xsa/xsa201-2.patch
CVE-2016-9815 (Xen through 4.7.x allows local ARM guest OS users to cause a denial of ...)
- xen 4.8.0-1
- [jessie] - xen <no-dsa> (Minor issue)
+ [jessie] - xen <ignored> (Minor issue)
[wheezy] - xen <not-affected> (ARM support introduced in 4.4)
NOTE: https://xenbits.xen.org/xsa/advisory-201.html
NOTE: CVE for fix via patch https://xenbits.xen.org/xsa/xsa201-1.patch
@@ -56487,7 +56487,7 @@
NOTE: Neutralised by kernel hardening (also contrib and non-free not supported)
CVE-2016-4963 (The libxl device-handling in Xen through 4.6.x allows local guest OS ...)
- xen 4.8.0~rc3-1
- [jessie] - xen <no-dsa> (Minor issue, too intrusive to backport)
+ [jessie] - xen <ignored> (Minor issue, too intrusive to backport)
[wheezy] - xen <no-dsa> (Minor issue, too intrusive to backport, libvirt doesn't have libxl driver enabled)
NOTE: http://xenbits.xen.org/xsa/advisory-178.html
CVE-2016-4962 (The libxl device-handling in Xen 4.6.x and earlier allows local OS ...)
More information about the Secure-testing-commits
mailing list