[Secure-testing-commits] r28937 - data/CVE

Sun, 21 Sep 2014 05:40:12 -0700 

Author: carnil
Date: 2014-09-21 12:39:09 +0000 (Sun, 21 Sep 2014)
New Revision: 28937

Modified:
   data/CVE/list
Log:
Add fixed versions for xen issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2014-09-21 09:14:15 UTC (rev 28936)
+++ data/CVE/list       2014-09-21 12:39:09 UTC (rev 28937)
@@ -5970,7 +5970,7 @@
        - ppc64-diag <itp> (bug #740179)
 CVE-2014-4021 (Xen 3.2.x through 4.4.x does not properly clean memory pages 
recovered ...)
        {DSA-3006-1}
-       - xen <unfixed> (bug #751894)
+       - xen 4.4.1-1 (bug #751894)
        [squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
 CVE-2014-4020 (The dissect_frame function in epan/dissectors/packet-frame.c in 
the ...)
        - wireshark 1.10.8-1
@@ -6188,11 +6188,11 @@
        [wheezy] - pulseaudio <no-dsa> (Minor issue)
        NOTE: 
http://lists.freedesktop.org/archives/pulseaudio-discuss/2014-May/020740.html
 CVE-2014-3968 (The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x 
allows ...)
-       - xen <unfixed> (bug #757724)
+       - xen 4.4.1-1 (bug #757724)
        [wheezy] - xen <not-affected> (Xen versions from 4.2 onwards are 
vulnerable)
        [squeeze] - xen <not-affected> (Xen versions from 4.2 onwards are 
vulnerable)
 CVE-2014-3967 (The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x 
does not ...)
-       - xen <unfixed> (bug #757724)
+       - xen 4.4.1-1 (bug #757724)
        [wheezy] - xen <not-affected> (Xen versions from 4.2 onwards are 
vulnerable)
        [squeeze] - xen <not-affected> (Xen versions from 4.2 onwards are 
vulnerable)
 CVE-2014-3966 (Cross-site scripting (XSS) vulnerability in 
Special:PasswordReset in ...)
@@ -8384,7 +8384,7 @@
        - xen <not-affected> (Only 32- and 64-bit ARM systems are affected from 
Xen 4.4 onwards)
 CVE-2014-3124 (The HVMOP_set_mem_type control in Xen 4.1 through 4.4.x allows 
local ...)
        {DSA-3006-1}
-       - xen <unfixed> (bug #757724)
+       - xen 4.4.1-1 (bug #757724)
        [squeeze] - xen <not-affected> (Xen versions from 4.1 onwards are 
vulnerable)
 CVE-2014-3123 (Cross-site scripting (XSS) vulnerability in 
admin/manage-images.php in ...)
        NOT-FOR-US: Wordpress plugin
@@ -9965,7 +9965,7 @@
        RESERVED
 CVE-2014-2599 (The HVMOP_set_mem_access HVM control operations in Xen 4.1.x 
for ...)
        {DSA-3006-1}
-       - xen <unfixed> (bug #757724)
+       - xen 4.4.1-1 (bug #757724)
        [squeeze] - xen <not-affected> (Only affects 4.1 and later)
 CVE-2014-2585 (ownCloud before 5.0.15 and 6.x before 6.0.2, when the 
file_external ...)
        - owncloud 6.0.2+dfsg-1


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to