search for: deb7u5

...r-4.1-amd64] XSA-123 / CVE-2015-2151 Hypervisor memory corruption due to x86 emulator flaw Bug reassigned from package 'xen-hypervisor-4.1-amd64' to 'src:xen'. No longer marked as found in versions xen/4.1.4-1 and xen/4.1.4-3+deb7u4. No longer marked as fixed in versions xen/4.1.4-3+deb7u5. > found 780227 4.1.4-1 Bug #780227 [src:xen] XSA-123 / CVE-2015-2151 Hypervisor memory corruption due to x86 emulator flaw Marked as found in versions xen/4.1.4-1. > fixed 780227 4.1.4-3+deb7u5 Bug #780227 [src:xen] XSA-123 / CVE-2015-2151 Hypervisor memory corruption due to x86 emulator fla...

Processing commands for control at bugs.debian.org: > found 780227 4.1.4-1 Bug #780227 [xen-hypervisor-4.1-amd64] XSA-123 / CVE-2015-2151 Hypervisor memory corruption due to x86 emulator flaw Marked as found in versions xen/4.1.4-1. > fixed 780227 4.1.4-3+deb7u5 Bug #780227 [xen-hypervisor-4.1-amd64] XSA-123 / CVE-2015-2151 Hypervisor memory corruption due to x86 emulator flaw Marked as fixed in versions xen/4.1.4-3+deb7u5. > thanks Stopping processing here. Please contact me if you need assistance. -- 780227: http://bugs.debian.org/cgi-bin/bugreport....

...Mar 2015 13:36:37 +0200 Source: xen Binary: xen-docs-4.1 libxen-4.1 libxenstore3.0 libxen-dev xenstore-utils libxen-ocaml libxen-ocaml-dev xen-utils-common xen-utils-4.1 xen-hypervisor-4.1-amd64 xen-system-amd64 xen-hypervisor-4.1-i386 xen-system-i386 Architecture: source all amd64 Version: 4.1.4-3+deb7u5 Distribution: wheezy-security Urgency: low Maintainer: Debian Xen Team <pkg-xen-devel at lists.alioth.debian.org> Changed-By: Guido Trotter <ultrotter at debian.org> Description: libxen-4.1 - Public libs for Xen libxen-dev - Public headers and libs for Xen libxen-ocaml - OCaml libra...

...Mar 2015 13:36:37 +0200 Source: xen Binary: xen-docs-4.1 libxen-4.1 libxenstore3.0 libxen-dev xenstore-utils libxen-ocaml libxen-ocaml-dev xen-utils-common xen-utils-4.1 xen-hypervisor-4.1-amd64 xen-system-amd64 xen-hypervisor-4.1-i386 xen-system-i386 Architecture: source all amd64 Version: 4.1.4-3+deb7u5 Distribution: wheezy-security Urgency: low Maintainer: Debian Xen Team <pkg-xen-devel at lists.alioth.debian.org> Changed-By: Guido Trotter <ultrotter at debian.org> Description: libxen-4.1 - Public libs for Xen libxen-dev - Public headers and libs for Xen libxen-ocaml - OCaml libra...

xen_4.1.4-3+deb7u5_amd64.changes uploaded successfully to localhost along with the files: xen_4.1.4-3+deb7u5.dsc xen_4.1.4-3+deb7u5.debian.tar.gz xen-docs-4.1_4.1.4-3+deb7u5_all.deb xen-utils-common_4.1.4-3+deb7u5_all.deb xen-hypervisor-4.1-amd64_4.1.4-3+deb7u5_amd64.deb xen-system-amd64_4.1.4-3+deb7u5_am...

...= SHELL01 realm = ADS.CONNON.ME.UK workgroup = CONNON dedicated keytab file = /etc/krb5.keytab kerberos method = dedicated keytab The OS for all machines is debian 7. The DC is using samba 4.1.17+dfsg-1~bpo70+1 from backports while the client is using 3.6.6-6+deb7u5. I appreciate that samba 3.6 is now very old but I'd like to avoid deviating from the standard install for clients. I'm reasonably sure this should be fixable with a 3.6 client since it has worked so well in the past. It is possible that the DC has received a minor (4.1.x) upgrade since...

...ble ("fixed") but according to the Debian Changelog [2] 4.4.1-9 appeared in Debian before XSA-133 was published and xen_4.4.1-9.debian.tar.xz [3] does not seem to contain any XSA-133 patch. Could you elaborate why 4.4.1-9 is not affected? * [1] also says that latest 4.1.4-3+deb7u5 of wheezy security is vulnerable. Patch xsa133-qemut.patch (with "t") [4] seems to apply cleanly. Are there plans to roll an update for wheezy security? Best, Sebastian [1] https://security-tracker.debian.org/tracker/CVE-2015-3456 [2] http://metadata.ftp-master.debian.org...

....CONNON.ME.UK > workgroup = CONNON > dedicated keytab file = /etc/krb5.keytab > kerberos method = dedicated keytab > > The OS for all machines is debian 7. The DC is using samba > 4.1.17+dfsg-1~bpo70+1 from backports while the client is using > 3.6.6-6+deb7u5. > I appreciate that samba 3.6 is now very old but I'd like to avoid > deviating from the standard install for clients. I'm reasonably sure > this should be fixable with a 3.6 client since it has worked so well > in the past. > > It is possible that the DC has received...

Package: xen-hypervisor-4.1-amd64 Version: 4.1.4-3+deb7u4 Severity: critical Hi, Not sure how come I'm the first one to file this kind of a bug report :) but here goes JFTR... http://xenbits.xen.org/xsa/advisory-123.html was embargoed, but advance warning was given to several big Xen VM farms, which led to e.g. https://aws.amazon.com/premiumsupport/maintenance-2015-03/

On 09/03/2015 21:59, Rowland Penny wrote: > How did you try to join the machine to the domain ? I think I know, > but it would like you to confirm my suspicions. Hi Rowland, This output was generated with `net ads join -Uprovisioning%<password> -d10 Regards, Richard