[Secure-testing-commits] r23833 - data/CVE

Salvatore Bonaccorso Mon, 30 Sep 2013 07:30:23 -0700

Author: carnil
Date: 2013-09-30 14:29:56 +0000 (Mon, 30 Sep 2013)
New Revision: 23833


Modified:
   data/CVE/list
Log:
Mark CVE-2013-4356 not affecting (old-)stable versions of xen

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-09-30 12:25:07 UTC (rev 23832)
+++ data/CVE/list       2013-09-30 14:29:56 UTC (rev 23833)
@@ -3514,8 +3514,8 @@
 CVE-2013-4356 [Memory accessible by 64-bit PV guests under live migration]
        RESERVED
        - xen <unfixed>
-       NOTE: according to XSA-64, 4.2.x and earlier releases are not vulnerable
-       TODO: check
+       [wheezy] - xen <not-affected> (Only affects 4.3+)
+       [squeeze] - xen <not-affected> (Only affects 4.3+)
 CVE-2013-4355 [Information leaks through I/O instruction emulation]
        RESERVED
        - xen <unfixed>


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r23833 - data/CVE

Reply via email to