[Git][security-tracker-team/security-tracker][master] new xen issues
Moritz Muehlenhoff
jmm at debian.org
Tue Dec 15 12:46:40 GMT 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
38149f2a by Moritz Muehlenhoff at 2020-12-15T13:46:00+01:00
new xen issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2505,16 +2505,30 @@ CVE-2020-29572 (app/View/Elements/genericElements/SingleViews/Fields/genericFiel
NOT-FOR-US: MISP
CVE-2020-29571
RESERVED
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-359.html
CVE-2020-29570
RESERVED
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-358.html
CVE-2020-29569
RESERVED
+ - linux <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-350.html
CVE-2020-29568
RESERVED
+ - linux <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-349.html
CVE-2020-29567
RESERVED
+ - xen <unfixed>
+ [buster] - xen <not-affected> (Only affects 4.14)
+ [stretch] - xen <not-affected> (Only affects 4.14)
+ NOTE: https://xenbits.xen.org/xsa/advisory-356.html
CVE-2020-29566
RESERVED
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-348.html
CVE-2020-29565 (An issue was discovered in OpenStack Horizon before 15.3.2, 16.x befor ...)
- horizon 3:18.6.1-1 (bug #976872)
[stretch] - horizon <no-dsa> (Minor issue)
@@ -2893,20 +2907,34 @@ CVE-2020-29487
RESERVED
CVE-2020-29486
RESERVED
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-352.html
CVE-2020-29485
RESERVED
-CVE-2020-29484
+CVE-2020-29484 [Xenstore: guests can crash xenstored via watchs]
RESERVED
-CVE-2020-29483
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-324.html
+CVE-2020-29483 [Xenstore: guests can disturb domain cleanup]
RESERVED
-CVE-2020-29482
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-325.html
+CVE-2020-29482 [Xenstore: wrong path length check]
RESERVED
-CVE-2020-29481
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-323.html
+CVE-2020-29481 [Xenstore: new domains inheriting existing node permissions]
RESERVED
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-322.html
CVE-2020-29480
RESERVED
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-115.html
CVE-2020-29479
RESERVED
+ - xen <unfixed>
+ NOTE: https://xenbits.xen.org/xsa/advisory-353.html
CVE-2020-29478
RESERVED
CVE-2021-1635
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/38149f2a12937eddc48080022c7de189692461c7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/38149f2a12937eddc48080022c7de189692461c7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201215/d98392ef/attachment.html>
More information about the debian-security-tracker-commits
mailing list