white at alioth.debian.org
2008-Jul-12 08:36 UTC
[Secure-testing-commits] r9315 - data/CVE
Author: white
Date: 2008-07-12 08:36:09 +0000 (Sat, 12 Jul 2008)
New Revision: 9315
Modified:
data/CVE/list
Log:
xen issue (from qemu) reported; other xen issue does not affect debian as ia64
is not supported
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-07-11 21:14:17 UTC (rev 9314)
+++ data/CVE/list 2008-07-12 08:36:09 UTC (rev 9315)
@@ -2475,7 +2475,8 @@
{DTSA-133-1}
- qemu 0.9.1-5
- kvm 66+dfsg-1.1 (bug #481204)
- TODO: check xen-unstable and xen-2
+ - xen-3 <unfixed> (bug #490409)
+ - xen-unstable <unfixed> (bug #490411)
- xen-3.0 <removed>
CVE-2008-2003 (BadBlue 2.72 Personal Edition stores multiple programs in the
web ...)
NOT-FOR-US: BadBlue
@@ -3380,7 +3381,9 @@
CVE-2008-1620 (Directory traversal vulnerability in 2X TFTP service (TFTPd.exe)
...)
NOT-FOR-US: ThinClientServer
CVE-2008-1619 (The ssm_i emulation in Xen 5.1 on IA64 architectures allows
attackers ...)
- TODO: check
+ - xen-3 <not-affected> (Debian Xen does not support ia64)
+ - xen-unstable <not-affected> (Debian Xen does not support ia64)
+ - xen-3.0 <not-affected> (Debian Xen does not support ia64)
CVE-2008-1618 (The PPTP VPN service in Watchguard Firebox before 10, when
performing ...)
NOT-FOR-US: Watchguard Firebox
CVE-2008-1617 (Double free vulnerability in Web TransferCtrl Class 8,2,1,4 ...)