> Here's the new changelog, with the remarks of J.Cristau taken into account:
>
> [ Thomas Goirand ]
> * CVE-2013-4261: [OSSA 2013-026] Fix problem with long messages in Qpid.
> * CVE-2013-2096: [OSSA 2013-012] Check QCOW2 image size during root disk
> creation (Closes: #710157).
The security tracker lists more issues potentially affecting stable:
CVE-2013-0326
CVE-2013-2255 Inconsistent and non-validating HTTPS client
CVE-2013-4179 The security group extension in OpenStack Compute (Nova) Grizzly
...
CVE-2013-4185 Algorithmic complexity vulnerability in OpenStack Compute (Nova)
...
CVE-2013-4463 Compressed disk image DoS
CVE-2013-4469 OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when ...
CVE-2013-4497 The XenAPI backend in OpenStack Compute (Nova) Folsom, Grizzly,
and ...
Do these affect stable and can they be fixed along?
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20131209171248.GB4385@pisco.westfalen.local
