[Secure-testing-commits] r24119 - data/CVE

Tue, 22 Oct 2013 04:23:53 -0700 

Author: carnil
Date: 2013-10-22 11:23:30 +0000 (Tue, 22 Oct 2013)
New Revision: 24119

Modified:
   data/CVE/list
Log:
Add bug number for libvirt issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-10-22 10:11:47 UTC (rev 24118)
+++ data/CVE/list       2013-10-22 11:23:30 UTC (rev 24119)
@@ -3873,13 +3873,13 @@
        - gnupg 1.4.15-1 (bug #725439)
 CVE-2013-4401 [unintended API access due to incorrect permissions checks]
        RESERVED
-       - libvirt <unfixed>
+       - libvirt <unfixed> (bug #727101)
        [squeeze] - libvirt <not-affected> (Introduced in 1.1.0, 
REMOTE_PROC_CONNECT_DOMAIN_XML_TO|FROM_NATIVE not yet present)
        [wheezy] - libvirt <not-affected> (Introduced in 1.1.0, 
REMOTE_PROC_CONNECT_DOMAIN_XML_TO|FROM_NATIVE not yet present)
        NOTE: 
http://libvirt.org/git/?p=libvirt.git;a=commit;h=57687fd6bf7f6e1b3662c52f3f26c06ab19dc96c
 CVE-2013-4400 [virt-login-shell arbitrary file overwrites vulnerability]
        RESERVED
-       - libvirt <unfixed>
+       - libvirt <unfixed> (bug #727101)
        [squeeze] - libvirt <not-affected> (Introduced in 1.1.2, 
virt-login-shell not yet present)
        [wheezy] - libvirt <not-affected> (Introduced in 1.1.2, 
virt-login-shell not yet present)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1015228#c3
@@ -3991,7 +3991,7 @@
        RESERVED
 CVE-2013-4373
        RESERVED
-       NOT-FOR-US: Red Hat JBoss Operations Network 
+       NOT-FOR-US: Red Hat JBoss Operations Network
 CVE-2013-4372 (Multiple cross-site scripting (XSS) vulnerabilities in Fuse 
Management ...)
        NOT-FOR-US: JBoss Fuse
 CVE-2013-4371 [use-after-free in libxl_list_cpupool under memory pressure]
@@ -4271,7 +4271,7 @@
        [wheezy] - keystone <not-affected> (only affects Folsom release and 
above)
 CVE-2013-4293
        RESERVED
-       NOT-FOR-US: Red Hat JBoss Operations Network 
+       NOT-FOR-US: Red Hat JBoss Operations Network
 CVE-2013-4292 (libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of 
...)
        - libvirt 1.1.2~rc2-1 (bug #721325)
        [squeeze] - libvirt <not-affected> (Introduced with 1.1.0)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to