[Git][security-tracker-team/security-tracker][master] xen, containerd DSAs

Tue Dec 2 22:02:45 GMT 2025


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
547731bb by Moritz Mühlenhoff at 2025-12-02T23:02:33+01:00
xen, containerd DSAs

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -112956,7 +112956,7 @@ CVE-2024-53144 (In the Linux kernel, the following vulnerability has been resolv
 	NOTE: https://git.kernel.org/linus/b25e11f978b63cb7857890edb3a698599cddb10e (6.12-rc2)
 CVE-2025-1713 (When setting up interrupt remapping for legacy PCI(-X) devices, includ ...)
 	- xen 4.20.0-1
-	[bookworm] - xen <postponed> (Minor issue, can be fixed along with next update)
+	[bookworm] - xen 4.17.5+72-g01140da4e8-1
 	[bullseye] - xen <end-of-life> (EOLed in Bullseye)
 	NOTE: https://xenbits.xen.org/xsa/advisory-467.html
 CVE-2024-53241 (In the Linux kernel, the following vulnerability has been resolved:  x ...)


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,11 @@
+[02 Dec 2025] DSA-6068-1 xen - security update
+	{CVE-2024-28956 CVE-2024-36350 CVE-2024-36357 CVE-2025-27465 CVE-2025-27466 CVE-2025-58142 CVE-2025-58143 CVE-2025-58144 CVE-2025-58145 CVE-2025-58147 CVE-2025-58148 CVE-2025-58149}
+	[bookworm] - xen 4.17.5+72-g01140da4e8-1
+	[trixie] - xen 4.20.2+7-g1badcf5035-0+deb13u1
+[02 Dec 2025] DSA-6067-1 containerd - security update
+	{CVE-2024-25621 CVE-2025-64329}
+	[bookworm] - containerd 1.6.20~ds1-1+deb12u2
+	[trixie] - containerd 1.7.24~ds1-6+deb13u1
 [30 Nov 2025] DSA-6066-1 gnome-shell-extension-gsconnect - security update
 	{CVE-2025-66270}
 	[trixie] - gnome-shell-extension-gsconnect 62-1+deb13u1


=====================================
data/dsa-needed.txt
=====================================
@@ -20,9 +20,6 @@ chromium (dilinger)
 cpp-httplib
   Maintainer preparing updates, waiting for feedback on bookworm status
 --
-containerd
-  Maintainer prepared changes for trixie for review (<40a98b3b99f645a938c4492d16411cec at tauware.de>)
---
 frr/oldstable
   coordination with the maintainer ongoing, Daniel Baumann proposing an update
 --
@@ -87,8 +84,5 @@ webkit2gtk (berto)
 wordpress
   Utkarsh Gupta proposed a debdiff to review.
 --
-xen
-  Hans van Kranenburg posted update for bookworm for review
---
 zabbix/oldstable
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/547731bb0be24160317c91b7e6b2280edc557be0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/547731bb0be24160317c91b7e6b2280edc557be0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251202/90117a41/attachment-0001.htm>
