[kernel-sec-discuss] r2676 - retired

Moritz Muehlenhoff jmm at alioth.debian.org
Fri Apr 27 14:06:58 UTC 2012 

Author: jmm
Date: 2012-04-27 14:06:56 +0000 (Fri, 27 Apr 2012)
New Revision: 2676

Added:
   retired/CVE-2011-1763
   retired/CVE-2011-1780
   retired/CVE-2011-1936
Log:
three old Xen issues, straight to retired


Added: retired/CVE-2011-1763
===================================================================
--- retired/CVE-2011-1763	                        (rev 0)
+++ retired/CVE-2011-1763	2012-04-27 14:06:56 UTC (rev 2676)
@@ -0,0 +1,8 @@
+Description: xen: mproper upper boundary check in get_free_port() function
+References:
+Notes:
+Bugs:
+upstream: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"
+2.6.32-upstream-stable: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"
+sid: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"
+2.6.32-squeeze-security: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"

Added: retired/CVE-2011-1780
===================================================================
--- retired/CVE-2011-1780	                        (rev 0)
+++ retired/CVE-2011-1780	2012-04-27 14:06:56 UTC (rev 2676)
@@ -0,0 +1,8 @@
+Description: xen: svm: insufficiencies in handling emulated instructions during vm exits
+References:
+Notes:
+Bugs:
+upstream: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"
+2.6.32-upstream-stable: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"
+sid: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"
+2.6.32-squeeze-security: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"

Added: retired/CVE-2011-1936
===================================================================
--- retired/CVE-2011-1936	                        (rev 0)
+++ retired/CVE-2011-1936	2012-04-27 14:06:56 UTC (rev 2676)
@@ -0,0 +1,8 @@
+Description: xen: vmx: insecure cpuid vmexit
+References:
+Notes:
+Bugs:
+upstream: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"
+2.6.32-upstream-stable: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"
+sid: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"
+2.6.32-squeeze-security: N/A "Only affected the old Xen kernel patch from 2.6.18/2.6.26"

More information about the kernel-sec-discuss mailing list