thomasbl-guest at alioth.debian.org
2008-Jun-28 12:23 UTC
[Secure-testing-commits] r9184 - data/CVE
Author: thomasbl-guest Date: 2008-06-28 12:23:25 +0000 (Sat, 28 Jun 2008) New Revision: 9184 Modified: data/CVE/list Log: fixed xen issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-06-28 10:02:15 UTC (rev 9183) +++ data/CVE/list 2008-06-28 12:23:25 UTC (rev 9184) @@ -1940,7 +1940,7 @@ CVE-2008-1953 (Cross-site scripting (XSS) vulnerability in the Sitedesigner before ...) NOT-FOR-US: Sitedesigner CVE-2008-1952 (The backend for XenSource Xen Para Virtualized Frame Buffer (PVFB) in ...) - - xen-3 <unfixed> (high; bug #487095) + - xen-3 3.2.1-2 (high; bug #487095) - xen-unstable <not-affected> (Vulnerable code not present, introduced in changeset 17630) TODO: check that next upload includes changes until changeset 17643 or higher CVE-2008-1951 @@ -1966,11 +1966,11 @@ CVE-2008-1945 RESERVED CVE-2008-1944 (Buffer overflow in the backend framebuffer of XenSource Xen ...) - - xen-3 <unfixed> (medium; bug #487095) - - xen-unstable <unfixed> (medium; bug #487097) + - xen-3 3.2.1-2 (medium; bug #487095) + - xen-unstable 3.3-unstable+hg17602-1 (medium; bug #487097) CVE-2008-1943 (Buffer overflow in the backend of XenSource Xen Para Virtualized Frame ...) - - xen-3 <unfixed> (medium; bug #487095) - - xen-unstable <unfixed> (medium; bug #487097) + - xen-3 3.2.1-2 (medium; bug #487095) + - xen-unstable 3.3-unstable+hg17602-1 (medium; bug #487097) CVE-2008-1942 (Foxit Reader 2.2 allows remote attackers to cause a denial of service ...) NOT-FOR-US: Foxit Reader CVE-2008-1941 (Cross-site scripting (XSS) vulnerability in the profile update feature ...)