search for: predisclosed

...d first and then > rebuild with a new changelog entry for stretch. sid's xen.dsc doesn't built with sid's gcc. I will file a bug about this. So I have done an binaryful upload to stretch-security now. Also, I have access via my Xen Project Security Team hat to the patches for the predisclosed advisories 231..234 and since Debian is also on the Xen Project predisclosure list I think it is proper for me with my Debian hat to start work on the packages for those. The release date is 2017-09-12 12:00. See https://xenbits.xen.org/xsa/ Regards, Ian. -- Ian Jackson <ijackson at chiark....

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Xen Security Advisory CVE-2013-6885 / XSA-82 version 3 Guest triggerable AMD CPU erratum may cause host hang UPDATES IN VERSION 3 ==================== Early public release. This issue was predisclosed under embargo by the Xen Project Security team, on the 27th of November. We treated the issue as not publicly known because it was not evident from the public sources that this erratum constitutes a vulnerability (particularly, that it was a vulnerability in relation to some Xen configurations)....