Author: nion
Date: 2007-09-28 13:46:42 +0000 (Fri, 28 Sep 2007)
New Revision: 6732
Modified:
data/CVE/list
Log:
CVE-2007-4993 xen was removed, new issue for etch
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-09-28 10:05:56 UTC (rev 6731)
+++ data/CVE/list 2007-09-28 13:46:42 UTC (rev 6732)
@@ -282,8 +282,9 @@
RESERVED
CVE-2007-4994
RESERVED
-CVE-2007-4993
- RESERVED
+CVE-2007-4993 [xen priviledge escalation]
+ - xen-3.0 <removed>
+ [etch] - xen-3.0 <unfixed> (medium; bug #444430)
CVE-2007-4992
RESERVED
CVE-2007-4991 (The SOCKS4 Proxy in Microsoft Internet Security and Acceleration
(ISA) ...)
@@ -8894,7 +8895,8 @@
CVE-2007-1320 (Multiple heap-based buffer overflows in the
cirrus_invalidate_region ...)
{DSA-1284-1 DTSA-38-1}
- qemu 0.9.0-2 (bug #424070)
- - xen-3.0 <unfixed> (bug #444007; medium)
+ - xen-3.0 <removed>
+ [etch] - xen-3.0 <unfixed> (bug #444007; medium)
CVE-2007-1319 (Unspecified vulnerability in the IOPCServer::RemoveGroup
function in ...)
NOT-FOR-US: DeviceXPlorer OLE
CVE-2007-1318
@@ -9939,7 +9941,8 @@
CVE-2007-0999 (Format string vulnerability in Ekiga 2.0.3, and probably other
...)
- ekiga 2.0.3-5 (bug #414069; high)
CVE-2007-0998 (The VNC server implementation in QEMU, as used by Xen and
possibly ...)
- - xen-3.0 <unfixed> (bug #436250; medium)
+ - xen-3.0 <removed>
+ [etch] - xen-3.0 <unfixed> (bug #436250; medium)
NOTE: Fedora disabled the VNC access to the Qemu monitor
NOTE: An adjusted patch has been sent to the debian bugreport
CVE-2007-0997 (Race condition in the tee (sys_tee) system call in the Linux
kernel ...)