diff options
| author | Michael Gilbert <michael.s.gilbert@gmail.com> | 2009-11-25 18:21:35 +0000 |
|---|---|---|
| committer | Michael Gilbert <michael.s.gilbert@gmail.com> | 2009-11-25 18:21:35 +0000 |
| commit | 4e3e99f66fa040991ea0938e8752b2cc86f2e6b8 (patch) | |
| tree | 4bbe9b7179afa9d316d0e245e30ff756f0644d6e /data | |
| parent | a5145b035145644b02dc8a4b10e4c5361c648524 (diff) | |
- new kernel kvm issue
- kvm issues fixed in unstable
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13375 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data')
| -rw-r--r-- | data/CVE/list | 14 |
1 files changed, 9 insertions, 5 deletions
diff --git a/data/CVE/list b/data/CVE/list index f53d2f9305..9b7ecd366b 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -73,8 +73,12 @@ CVE-2009-4033 RESERVED CVE-2009-4032 RESERVED -CVE-2009-4031 +CVE-2009-4031 [linux-2.6/kvm dos] RESERVED + - linux-2.6 <unfixed> (low) + [etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25) + - linux-2.6.24 <not-affected> (kvm introduced in 2.6.25) + - kvm <unfixed> (low) CVE-2009-4030 RESERVED CVE-2009-4029 @@ -308,7 +312,7 @@ CVE-2009-4004 (Buffer overflow in the kvm_vcpu_ioctl_x86_setup_mce function in . - linux-2.6 <unfixed> (medium) [etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25) - linux-2.6.24 <not-affected> (kvm introduced in 2.6.25) - - kvm <unfixed> (medium; bug #557736) + - kvm 88+dfsg-2 (medium; bug #557736) NOTE: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=a9e38c3e01ad242fe2a625354cf065c34b01e3aa CVE-2009-3937 (Memory leak in Solaris TCP sockets in Sun OpenSolaris snv_106 through ...) NOT-FOR-US: Sun OpenSolaris @@ -800,7 +804,7 @@ CVE-2009-3722 (The handle_dr function in arch/x86/kvm/vmx.c in the KVM subsystem [etch] - linux-2.6 <not-affected> (issue introduced in 2.6.30-rc1) [lenny] - linux-2.6 <not-affected> (issue introduced in 2.6.30-rc1) - linux-2.6 2.6.31-1 (low) - - kvm <unfixed> (low; bug #557739) + - kvm 88+dfsg-2 (low; bug #557739) NOTE: http://bugzilla.redhat.com/531660 NOTE: http://git.kernel.org/linus/0a79b009525b160081d75cef5dbf45817956acf2 CVE-2009-3721 @@ -1022,7 +1026,7 @@ CVE-2009-3640 (The update_cr8_intercept function in arch/x86/kvm/x86.c in the KV [lenny] - linux-2.6 <not-affected> (introduced post 2.6.27) [etch] - linux-2.6 <not-affected> (introduced post 2.6.27) - linux-2.6.24 <not-affected> (introduced post 2.6.27) - - kvm <unfixed> (medium; bug #557737) + - kvm 88+dfsg-2 (medium; bug #557737) [lenny] - kvm <not-affected> (Vulnerable code not present) CVE-2009-3639 (The mod_tls module in ProFTPD before 1.3.2b, and 1.3.3 before ...) {DSA-1925-1} @@ -5478,7 +5482,7 @@ CVE-2009-2287 (The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux ke {DSA-1846-1 DSA-1845-1} - linux-2.6 2.6.30-2 (low) - linux-2.6.24 <removed> - - kvm <unfixed> (low; bug #557737) + - kvm 88+dfsg-2 (low; bug #557737) CVE-2009-2285 (Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 ...) {DSA-1835-1} - tiff 3.8.2-12 (low; bug #534137) |