Hi, everyone out there,
the last set of fixes was accepted into Debian sec (oldstable) as
package version 4.4.4lts3-0+deb8u1.
Meanwhile, I prepared another set of fixes.
These include
xsa 252 / CVE-2018-7540
xsa 255 / CVE-2018-7541
xsa 260 / CVE-2018-8897
xsa 264 / CVE-2018-12891
xsa 265 / CVE
On Mon, 2018-10-29 at 15:56 +0100, Peter Dreuw wrote:
> Am 26.10.18 um 14:48 schrieb Ben Hutchings:
> > On Thu, 2018-10-25 at 11:32 +0200, Peter Dreuw wrote:
> > > Am 25.10.18 um 10:08 schrieb Peter Dreuw:
> > > may one point to make it clear, tho it might be obvious to most of you:
> > >
> > > We
Am 26.10.18 um 14:48 schrieb Ben Hutchings:
> On Thu, 2018-10-25 at 11:32 +0200, Peter Dreuw wrote:
>> Am 25.10.18 um 10:08 schrieb Peter Dreuw:
>> may one point to make it clear, tho it might be obvious to most of you:
>>
>> We can apply fixes to the original Xen 4.4 version and have done
>> ever
On Thu, 2018-10-25 at 11:32 +0200, Peter Dreuw wrote:
> Am 25.10.18 um 10:08 schrieb Peter Dreuw:
> > Am 24.10.18 um 20:34 schrieb Antoine Beaupré:
> > > > I am not sure if this can be done with Xen 4.4 - at least not to a level
> > > > of a 100% solution. Looking into the upstream code for e.g. 4.
Am 25.10.18 um 10:08 schrieb Peter Dreuw:
> Am 24.10.18 um 20:34 schrieb Antoine Beaupré:
>>> I am not sure if this can be done with Xen 4.4 - at least not to a level
>>> of a 100% solution. Looking into the upstream code for e.g. 4.6 there
>>> are many changes that would need to be considered. I
Am 24.10.18 um 22:55 schrieb Antoine Beaupré:
> On 2018-10-23 14:03:37, Peter Dreuw wrote:
>> The testing packages are available here:
>>
>> https://share.credativ.com/~pdr/xen-test/
> One more thing about those... The .deb packages are provided completely
> without signatures. I understand that
Am 24.10.18 um 20:34 schrieb Antoine Beaupré:
>> I am not sure if this can be done with Xen 4.4 - at least not to a level
>> of a 100% solution. Looking into the upstream code for e.g. 4.6 there
>> are many changes that would need to be considered. I am thinking of
>> this, currently, yes. The sam
On 2018-10-23 14:03:37, Peter Dreuw wrote:
> The testing packages are available here:
>
> https://share.credativ.com/~pdr/xen-test/
One more thing about those... The .deb packages are provided completely
without signatures. I understand that the site is protected by HTTPS,
but it is customary to
On 2018-10-24 19:33:45, Peter Dreuw wrote:
> Am 24.10.18 um 17:24 schrieb Antoine Beaupré:
>> On 2018-10-23 14:03:37, Peter Dreuw wrote:
>>> Hello, everyone,
>>>
>>> I prepared another set of fixes based on the current Xen package on
>>> jessie-security (4.4.4lts2-0+deb8u1, DLA-1549).
>>>
>>> The
On 2018-10-24 11:24:28, Antoine Beaupré wrote:
> On 2018-10-23 14:03:37, Peter Dreuw wrote:
>> Hello, everyone,
>>
>> I prepared another set of fixes based on the current Xen package on
>> jessie-security (4.4.4lts2-0+deb8u1, DLA-1549).
>>
>> These fixes include
>>
>> CVE-2017-15595 / xsa 240
>
Am 24.10.18 um 17:24 schrieb Antoine Beaupré:
> On 2018-10-23 14:03:37, Peter Dreuw wrote:
>> Hello, everyone,
>>
>> I prepared another set of fixes based on the current Xen package on
>> jessie-security (4.4.4lts2-0+deb8u1, DLA-1549).
>>
>> These fixes include
>>
>> CVE-2017-15595 / xsa 240
>
On 2018-10-23 14:03:37, Peter Dreuw wrote:
> Hello, everyone,
>
> I prepared another set of fixes based on the current Xen package on
> jessie-security (4.4.4lts2-0+deb8u1, DLA-1549).
>
> These fixes include
>
> CVE-2017-15595 / xsa 240
> CVE-2017-15593 / xsa 242
> CVE-2017-15592 / xsa 243
>
Hello, everyone,
I prepared another set of fixes based on the current Xen package on
jessie-security (4.4.4lts2-0+deb8u1, DLA-1549).
These fixes include
CVE-2017-15595 / xsa 240
CVE-2017-15593 / xsa 242
CVE-2017-15592 / xsa 243
CVE-2017-16693 / xsa 244
CVE-2017-17044 / xsa 246
CVE-2017-1
13 matches
Mail list logo
