[Git][security-tracker-team/security-tracker][master] Add CVE-2023-46841/xen

Salvatore Bonaccorso (@carnil) Tue, 27 Feb 2024 04:50:50 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
f4ee5a78 by Salvatore Bonaccorso at 2024-02-27T13:33:43+01:00
Add CVE-2023-46841/xen

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7251,6 +7251,11 @@ CVE-2020-36772 (CloudLinux  CageFS 7.0.8-2 or below 
insufficiently restricts fil
        NOT-FOR-US: CloudLinux CageFS
 CVE-2020-36771 (CloudLinux  CageFS 7.1.1-1 or below passes the authentication 
token as ...)
        NOT-FOR-US: CloudLinux CageFS
+CVE-2023-46841 [x86: shadow stack vs exceptions from emulation stubs]
+       - xen <unfixed>
+       [bullseye] - xen <end-of-life> (EOLed in Bullseye)
+       [buster] - xen <not-affected> (Vulnerable code not present)
+       NOTE: https://xenbits.xen.org/xsa/advisory-451.html
 CVE-2023-46840 [VT-d: Failure to quarantine devices in !HVM builds]
        - xen 4.17.3+10-g091466ba55-1
        [bookworm] - xen 4.17.3+10-g091466ba55-1~deb12u1



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4ee5a7806ab699cdefdd2df7b8f72776d5fe0ad

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4ee5a7806ab699cdefdd2df7b8f72776d5fe0ad
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Add CVE-2023-46841/xen

Reply via email to