similar to: Uncontrolled disclosure of advisories XSA-26 to XSA-32

Displaying 7 results from an estimated 7 matches similar to: "Uncontrolled disclosure of advisories XSA-26 to XSA-32"

2015 May 13
0
Xen Security Advisory 133 (CVE-2015-3456) - Privilege escalation via emulated floppy disk drive
xen-4.4.2-2, available from the virt6-testing repository, includes the fix for this issue. Note that Xen actually does attempt to disable the floppy disk for HVM domains by default, but due to a bug in qemu, the floppy disk only partially disabled; enough functionality to exploit this bug remains. This should be available from the normal xen4 repositories sometime this afternoon. -George
2011 Jul 14
4
Security vulnerability process - last call
In May I sent out a draft security vulnerability process. Mostly it seems to have met with approval or at least acquiescence. We received some comments and based on that I have prepared a new final draft. The changes ought not to be controversial. Please send any final comments by the 28th of July (14 days from now). Unless there are objections, we will regard the process as formally in force
2017 Sep 07
2
Updated Xen packages for XSA 216..225
(*Really* switching to my personal address not because I'm not doing work for Citrix, but because the corporate email is not working properly. Sigh. Also, email updated a bit.) Ian Jackson writes ("Re: Updated Xen packages for XSA 216..225"): > Ian Jackson writes ("Re: Updated Xen packages for XSA 216..225"): > > Hi. I was away and am now back. There are a lot
2013 Aug 30
14
Coverity + XenProject + Process?
Hey We have a static analyzer setup for Xen called Coverity. It allows the code to be inspected for bugs and such. Originally I setup this so that we could make sure that there are no bugs that cause security issues - and as such invited only folks on the security Xen mailing list. But there are other folks who I am sure would like to contribute and as Coverity is pretty amazing at analyzing
2015 Sep 08
7
Notes from Xen BoF at Debconf15
Xen upstream BoF ================ We had a discussion around Xen and packaging at Debian's annual developer conference (Debconf) a few weeks back: https://summit.debconf.org/debconf15/meeting/279/xen-upstream-bof/ These are my notes, I think there is probably stuff of interest to most distro people, not just Debian folks. The session was scheduled in a small, out of the way, room. Around 2
2011 Aug 22
1
Shocking Easy Google First Page RankingUsing The Backlink Syndication! Up To 250k+ Unstoppable, Uncontrollable! The Secrets Revealed!"
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <meta content="text/html; charset=ISO-8859-1" http-equiv="content-type"> <title>250K</title> </head> <body> <div style="text-align: center;"><span dir="rtl"> Do you want to boost your blog in
2011 Aug 16
4
Dashboard table resource_statuses growing uncontrollably
I''ve "inherited" the administration of a puppet-dashboard (version 1.1.0, installed on RHEL 5.6 from puppetlabs RPM), and have hit a problem I''m hoping for some help with. In short, one table, "resource_statuses" appears to be growing at a rate far higher then the other tables: mysql> select count(*) from nodes; +----------+ | count(*) | +----------+ |