Displaying 3 results from an estimated 3 matches for "861660".
2017 May 04
2
Bug#861660: Xen package security updates for jessie 4.4, XSA-213, XSA-214
Moritz Muehlenhoff writes ("Re: Xen package security updates for jessie 4.4, XSA-213, XSA-214"):
> On Thu, May 04, 2017 at 05:59:18PM +0100, Ian Jackson wrote:
> > Should I put jessie-security in the debian/changelog and dgit push it
> > (ie, from many people's pov, dput it) ?
>
> Yes, the distribution line should be jessie-security, but please send
> a
2017 May 04
3
Bug#861660: Xen package security updates for jessie 4.4, XSA-213, XSA-214
Moritz Muehlenhoff writes ("Re: Xen package security updates for jessie 4.4, XSA-213, XSA-214"):
> On Thu, May 04, 2017 at 05:06:07PM +0100, Ian Jackson wrote:
> > I have fixed these in stretch but the jessie package remains unfixed.
> > I think I may be able to find some backports somewhere. Would that be
> > useful ? Is anyone else working on this ?
>
>
2017 May 04
4
Xen package security updates for jessie 4.4, XSA-213, XSA-214
...Ian.
diff --git a/debian/changelog b/debian/changelog
index 25361a61e4..a42f68d3a9 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+xen (4.4.1-9+deb8u9) unstable; urgency=medium
+
+ Security updates:
+ * XSA-213: Closes:#861659: 64bit PV guest breakout
+ * XSA-214: Closes:#861660: grant transfer PV privilege escalation
+ * XSA-215: Closes:#861662: memory corruption via failsafe callback
+
+ -- Ian Jackson <ijackson at chiark.greenend.org.uk> Thu, 04 May 2017 20:06:35 +0100
+
xen (4.4.1-9+deb8u8) jessie-security; urgency=high
* Non-maintainer upload by the Secu...