[kernel-sec-discuss] r4126 - active
Ben Hutchings
benh at moszumanska.debian.org
Fri Jan 29 04:10:16 UTC 2016
Author: benh
Date: 2016-01-29 04:10:16 +0000 (Fri, 29 Jan 2016)
New Revision: 4126
Added:
active/CVE-2015-8553
Log:
Add CVE-2015-8553
Added: active/CVE-2015-8553
===================================================================
--- active/CVE-2015-8553 (rev 0)
+++ active/CVE-2015-8553 2016-01-29 04:10:16 UTC (rev 4126)
@@ -0,0 +1,16 @@
+Description: Incomplete fix for CVE-2015-2150
+References:
+ http://xenbits.xen.org/xsa/advisory-120.html
+ http://thread.gmane.org/gmane.comp.emulators.xen.devel/140440/focus=140441
+ http://thread.gmane.org/gmane.linux.kernel/1924087/focus=1924088
+Notes:
+ bwh> Upstream fix is not clearly correct; see discussions in the references.
+Bugs:
+upstream: needed
+3.16-upstream-stable: needed
+3.2-upstream-stable: needed
+2.6.32-upstream-stable: N/A "xen-pciback introduced in 3.1"
+sid: needed
+3.16-jessie-security: needed
+3.2-wheezy-security: needed
+2.6.32-squeeze-security: ignored "Xen dom0 not supported in squeeze LTS"
More information about the kernel-sec-discuss
mailing list