[Git][security-tracker-team/security-tracker][master] Add references for CVE-2021-0089 / CVE-2021-26313 and CVE-2021-0086 / CVE-2021-26314

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jun 11 05:13:36 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
67e86969 by Salvatore Bonaccorso at 2021-06-11T06:12:36+02:00
Add references for  CVE-2021-0089 / CVE-2021-26313 and CVE-2021-0086 / CVE-2021-26314

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19531,11 +19531,15 @@ CVE-2021-26316
 CVE-2021-26315
 	RESERVED
 CVE-2021-26314 (Potential floating point value injection in all supported CPU products ...)
+	NOTE: https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1003
+	NOTE: Claimed to not affect Xen, Cf. https://xenbits.xen.org/xsa/advisory-375.html in
+	NOTE: ("NOTE CONCERNING CVE-2021-0086 / CVE-2021-26314").
 	TODO: check
 CVE-2021-26313 (Potential speculative code store bypass in all supported CPU products, ...)
 	- xen <unfixed>
 	[stretch] - xen <end-of-life> (DSA 4602-1)
 	NOTE: https://xenbits.xen.org/xsa/advisory-375.html
+	NOTE: https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1003
 CVE-2021-26312
 	RESERVED
 CVE-2021-26311 (In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest a ...)
@@ -46863,11 +46867,15 @@ CVE-2021-0089 (Observable response discrepancy in some Intel(R) Processors may a
 	- xen <unfixed>
 	[stretch] - xen <end-of-life> (DSA 4602-1)
 	NOTE: https://xenbits.xen.org/xsa/advisory-375.html
+	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00516.html
 CVE-2021-0088
 	RESERVED
 CVE-2021-0087
 	RESERVED
 CVE-2021-0086 (Improper permissions in the installer for the Intel(R) Brand Verificat ...)
+	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00546.html
+	NOTE: Claimed to not affect Xen, Cf. https://xenbits.xen.org/xsa/advisory-375.html in
+	NOTE: ("NOTE CONCERNING CVE-2021-0086 / CVE-2021-26314").
 	TODO: check
 CVE-2021-0085
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67e86969cb95b3a46112a8085148fcb671b0b3f1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67e86969cb95b3a46112a8085148fcb671b0b3f1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210611/f1a1950b/attachment.htm>

More information about the debian-security-tracker-commits mailing list