similar to: Processed: closing 770230

Processing commands for control at bugs.debian.org: > retitle 770230 xen: CVE-2014-5146 CVE-2014-5149 CVE-2014-8594 CVE-2014-8595 CVE-2014-9030 Bug #770230 [src:xen] CVE-2014-5146 CVE-2014-5149 CVE-2014-8594 CVE-2014-8595 Changed Bug title to 'xen: CVE-2014-5146 CVE-2014-5149 CVE-2014-8594 CVE-2014-8595 CVE-2014-9030' from 'CVE-2014-5146 CVE-2014-5149 CVE-2014-8594

Processing commands for control at bugs.debian.org: > severity 770230 important Bug #770230 [src:xen] xen: CVE-2014-5146 CVE-2014-5149 CVE-2014-8594 CVE-2014-8595 CVE-2014-9030 Severity set to 'important' from 'grave' > thanks Stopping processing here. Please contact me if you need assistance. -- 770230: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770230 Debian Bug

On Wed, Nov 19, 2014 at 11:45:02PM +0100, Moritz Muehlenhoff wrote: > Source: xen > Severity: grave > Tags: security > > Hi, > the following security issues apply to Xen in jessie: > > CVE-2014-5146,CVE-2014-5149: > https://marc.info/?l=oss-security&m=140784877111813&w=2 > > CVE-2014-8594: >

Source: xen Severity: grave Tags: security Hi, the following security issues apply to Xen in jessie: CVE-2014-5146,CVE-2014-5149: https://marc.info/?l=oss-security&m=140784877111813&w=2 CVE-2014-8594: https://marc.info/?l=oss-security&m=141631359901060&w=2 CVE-2014-8595: https://marc.info/?l=oss-security&m=141631352601020&w=2 Cheers, Moritz

Accepted: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 27 Nov 2014 20:17:36 +0100 Source: xen Binary: libxen-4.4 libxenstore3.0 libxen-dev xenstore-utils xen-utils-common xen-utils-4.4 xen-hypervisor-4.4-amd64 xen-system-amd64 xen-hypervisor-4.4-arm64 xen-system-arm64 xen-hypervisor-4.4-armhf xen-system-armhf Architecture: source all amd64 Version: 4.4.1-4 Distribution:

Processing commands for control at bugs.debian.org: > close 776319 4.5.1~rc1-1 Bug #776319 [src:xen] xen: CVE-2015-0361 CVE-2015-1563 Marked as fixed in versions xen/4.5.1~rc1-1. Bug #776319 [src:xen] xen: CVE-2015-0361 CVE-2015-1563 Marked Bug as done > thanks Stopping processing here. Please contact me if you need assistance. -- 776319:

Processing commands for control at bugs.debian.org: > close 784011 4.5.1~rc1-1 Bug #784011 [src:xen] xen: CVE-2015-3340: Information leak through XEN_DOMCTL_gettscinfo (XSA-132) Marked as fixed in versions xen/4.5.1~rc1-1. Bug #784011 [src:xen] xen: CVE-2015-3340: Information leak through XEN_DOMCTL_gettscinfo (XSA-132) Marked Bug as done > thanks Stopping processing here. Please contact

The following packages are updated for Xen4CentOS for CentOS 6: Source: 942bc436e401c798991ae4ca956082c12a5a3b65ec53cd7ec9901dda7704f9b7 e1000e-2.5.4-3.10.63.2.el6.centos.alt.src.rpm aa46f97636568c46295d2d99f1e33b5fda50df707a2a8321a516200b8b4e95a6 kernel-3.10.63-11.el6.centos.alt.src.rpm ea44d2658e096ef6f00f7dfd4fecc6bff977d959563e4929539d23643b134c3a libvirt-0.10.2.8-9.el6.centos.alt.src.rpm

Processing commands for control at bugs.debian.org: > close 795721 4.6.0-1 Bug #795721 [src:xen] CVE-2015-3259 CVE-2015-3340 CVE-2015-4163 CVE-2015-4164 Marked as fixed in versions xen/4.6.0-1. Bug #795721 [src:xen] CVE-2015-3259 CVE-2015-3340 CVE-2015-4163 CVE-2015-4164 Marked Bug as done > thanks Stopping processing here. Please contact me if you need assistance. -- 795721:

Mapping stable-security to proposed-updates. Accepted: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 21 Jan 2015 13:50:48 +0200 Source: xen Binary: xen-docs-4.1 libxen-4.1 libxenstore3.0 libxen-dev xenstore-utils libxen-ocaml libxen-ocaml-dev xen-utils-common xen-utils-4.1 xen-hypervisor-4.1-amd64 xen-system-amd64 xen-hypervisor-4.1-i386 xen-system-i386 Architecture:

Accepted: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 21 Jan 2015 13:50:48 +0200 Source: xen Binary: xen-docs-4.1 libxen-4.1 libxenstore3.0 libxen-dev xenstore-utils libxen-ocaml libxen-ocaml-dev xen-utils-common xen-utils-4.1 xen-hypervisor-4.1-amd64 xen-system-amd64 xen-hypervisor-4.1-i386 xen-system-i386 Architecture: source all amd64 Version: 4.1.4-3+deb7u4

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

Processing commands for control at bugs.debian.org: > # Automatically generated email from bts, devscripts version 2.9.26 > reassign 444430 xen-3.0 3.0.3-0-2 Bug#444430: CVE-2007-4993 privilege escalation Bug reassigned from package `xen-3' to `xen-3.0'. > clone 444430 -1 Bug#444430: CVE-2007-4993 privilege escalation Bug 444430 cloned as bug 446771. > reassign -1 xen-3

CentOS Errata and Security Advisory 2014:X010 (Xen4CentOS) The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) ----------------------------- X86_64 ----------------------------- f5a30e6c7c17a391dfc218cce2c2ca52dba4bf61d6c2d664faecda673d72fdea xen-4.2.5-33.el6.centos.alt.x86_64.rpm

Processing commands for control at bugs.debian.org: > found 753358 4.4.1-1 Bug #753358 [xen] pygrub not working when a disk script is in use There is no source info for the package 'xen' at version '4.4.1-1' with architecture '' Unable to make a source version for version '4.4.1-1' Ignoring request to alter found versions of bug #753358 to the same values

Processing commands for control at bugs.debian.org: > # As per Moritz, not blockers > user release.debian.org at packages.debian.org Setting user to release.debian.org at packages.debian.org (was adam at adam-barratt.org.uk). > tag 609531 + squeeze-ignore Bug #609531 [xen] CVE-2010-4255: 64-bit PV xen guest can crash host by accessing hypervisor per-domain memory area Added tag(s)

Processing commands for control at bugs.debian.org: > # Automatically generated email from bts, devscripts version 2.9.26 > reassign 469662 xen-unstable Bug#469662: xen-3: CVE-2008-0928 privilege escalation Bug reassigned from package `xen-3' to `xen-unstable'. > close 469662 3.3-unstable+hg17192-1 Bug#469662: xen-3: CVE-2008-0928 privilege escalation 'close' is

Processing commands for control at bugs.debian.org: > close 680479 4.1.3~rc1+hg-20120614.a9c0a89c08f2-1 Bug #680479 [xen-utils-4.0] xen-utils-4.0: pygrub does not support grub2 submenus There is no source info for the package 'xen-utils-4.0' at version '4.1.3~rc1+hg-20120614.a9c0a89c08f2-1' with architecture '' Unable to make a source version for version

Processing commands for control at bugs.debian.org: > close 609689 4.1.3~rc1+hg-20120614.a9c0a89c08f2-2 Bug #609689 [xen-utils-4.0] xen-utils-4.0: Missing xentrace_format python script in /usr/lib/xen-4.0/bin/ There is no source info for the package 'xen-utils-4.0' at version '4.1.3~rc1+hg-20120614.a9c0a89c08f2-2' with architecture '' Unable to make a source version for

Processing commands for control at bugs.debian.org: > close 391606 4.1.3~rc1+hg-20120614.a9c0a89c08f2-2 Bug #391606 [xen-utils-common] xen-utils-common: doesn't ship referenced man pages Marked as fixed in versions xen/4.1.3~rc1+hg-20120614.a9c0a89c08f2-2. Bug #391606 [xen-utils-common] xen-utils-common: doesn't ship referenced man pages Marked Bug as done > thanks Stopping