[Git][security-tracker-team/security-tracker][master] new xen issues

Moritz Muehlenhoff jmm at debian.org
Tue Mar 5 20:58:27 GMT 2019 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6e5ad02f by Moritz Muehlenhoff at 2019-03-05T20:57:56Z
new xen issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,30 @@
+CVE-2019-XXXX [xen: x86 shadow: Insufficient TLB flushing when using PCID]
+	- xen <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-294.html
+CVE-2019-XXXX [xen: x86: PV kernel context switch corruption]
+	- xen <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-293.html
+CVE-2019-XXXX [xen: x86: insufficient TLB flushing when using PCID]
+	- xen <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-292.html
+CVE-2019-XXXX [xen: x86/PV: page type reference counting issue with failed IOMMU update]
+	- xen <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-291.html
+CVE-2019-XXXX [xen: missing preemption in x86 PV page table unvalidation]
+	- xen <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-290.html
+CVE-2019-XXXX [xen: x86: Inconsistent PV IOMMU discipline]
+	- xen <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-288.html
+CVE-2019-XXXX [xen: x86: steal_page violates page_struct access discipline]
+	- xen <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-287.html
+CVE-2019-XXXX [xen: race with pass-through device hotplug]
+	- xen <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-285.html
+CVE-2019-XXXX [xen: grant table transfer issues on large hosts]
+	- xen <unfixed>
+	NOTE: https://xenbits.xen.org/xsa/advisory-284.html
 CVE-2019-9572 (SchoolCMS version 2.3.1 allows file upload via the theme upload feature ...)
 	TODO: check
 CVE-2019-9571



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6e5ad02f82e06e590fda93da92888983a63bc90f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6e5ad02f82e06e590fda93da92888983a63bc90f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190305/e5d11f7e/attachment.html>

More information about the debian-security-tracker-commits mailing list