[Git][security-tracker-team/security-tracker][master] Update xen infos

[Bastian Blank]

Bastian Blank pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
de0e69ba by Bastian Blank at 2019-09-24T10:50:15Z
Update xen infos

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -48807,6 +48807,7 @@ CVE-2018-19967 (An issue was discovered in Xen through 
4.11.x on Intel x86 platf
        {DSA-4369-1 DLA-1577-1}
        - xen 4.11.1-1
        NOTE: https://xenbits.xen.org/xsa/advisory-282.txt
+       - xen 4.4.4lts4-0+deb8u1
 CVE-2018-19115 (keepalived before 2.0.7 has a heap-based buffer overflow when 
parsing  ...)
        {DLA-1589-1}
        - keepalived 1:2.0.10-1 (low; bug #914393)
@@ -137101,6 +137102,8 @@ CVE-2017-5754 (Systems with microprocessors utilizing 
speculative execution and
        NOTE: Paper: https://meltdownattack.com/meltdown.pdf
        NOTE: https://01.org/security/advisories/intel-oss-10003
        - linux-grsec <removed>
+       [jessie] - xen <no-dsa> (Too intrusive to backport)
+       NOTE: https://xenbits.xen.org/xsa/advisory-254.html
 CVE-2017-5753 (Systems with microprocessors utilizing speculative execution 
and branc ...)
        {DSA-4188-1 DSA-4187-1 DLA-1731-1 DLA-1423-1 DLA-1422-1}
        - linux 4.15.11-1
@@ -137119,6 +137122,8 @@ CVE-2017-5753 (Systems with microprocessors utilizing 
speculative execution and
        NOTE: Paper: https://spectreattack.com/spectre.pdf
        NOTE: https://01.org/security/advisories/intel-oss-10002
        - linux-grsec <removed>
+       [jessie] - xen <no-dsa> (Too intrusive to backport)
+       NOTE: https://xenbits.xen.org/xsa/advisory-254.html
 CVE-2017-5752
        RESERVED
 CVE-2017-5751
@@ -137245,6 +137250,8 @@ CVE-2017-5715 (Systems with microprocessors utilizing 
speculative execution and
        [stretch] - nvidia-graphics-drivers-legacy-304xx <no-dsa> (Non-free not 
supported)
        [jessie] - nvidia-graphics-drivers-legacy-304xx <no-dsa> (Non-free not 
supported)
        - linux-grsec <removed>
+       [jessie] - xen <no-dsa> (Too intrusive to backport)
+       NOTE: https://xenbits.xen.org/xsa/advisory-254.html
 CVE-2017-5714
        RESERVED
 CVE-2017-5713



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/de0e69ba4992051490f55253b805635a222a2a59

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/de0e69ba4992051490f55253b805635a222a2a59
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits