[sec-notice PATCH 4/2] LSN-2013-0018: still vulnerable in latest release

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

We still don't have a full solution for CVE-2013-6456.

* notices/2013/0018.xml: several maint branches had a vulnerable
release.

Signed-off-by: Eric Blake <eblake@xxxxxxxxxx>
---
 notices/2013/0018.xml | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/notices/2013/0018.xml b/notices/2013/0018.xml
index 5d250c8..275fcc5 100644
--- a/notices/2013/0018.xml
+++ b/notices/2013/0018.xml
@@ -42,6 +42,10 @@ unless the guest OS is trusted.]]>
       <name>Reco</name>
       <email>recoverym4n@xxxxxxxxx</email>
     </patcher>
+    <patcher>
+      <name>Eric Blake</name>
+      <email>eblake@xxxxxxxxxx</email>
+    </patcher>
   </credits>

   <lifecycle>
@@ -115,6 +119,7 @@ unless the guest OS is trusted.]]>
       <tag state="vulnerable">v1.0.5.6</tag>
       <tag state="vulnerable">v1.0.5.7</tag>
       <tag state="vulnerable">v1.0.5.8</tag>
+      <tag state="vulnerable">v1.0.5.9</tag>
       <change state="vulnerable">cbb106f807b32f1f6af22d1e92fe0ff9ba6d73b3</change>
       <change state="vulnerable">de858e3fa7ffcab5f80d07f8a74d94cbaf8716b9</change>
       <change state="vulnerable">ed77abc58bc5a6837a5021f26e1a335dbfb477bf</change>
@@ -157,6 +162,7 @@ unless the guest OS is trusted.]]>
       <name>v1.1.3-maint</name>
       <tag state="vulnerable">v1.1.3.1</tag>
       <tag state="vulnerable">v1.1.3.2</tag>
+      <tag state="vulnerable">v1.1.3.3</tag>
       <change state="vulnerable">cbb106f807b32f1f6af22d1e92fe0ff9ba6d73b3</change>
       <change state="vulnerable">de858e3fa7ffcab5f80d07f8a74d94cbaf8716b9</change>
       <change state="vulnerable">ed77abc58bc5a6837a5021f26e1a335dbfb477bf</change>
@@ -179,6 +185,14 @@ unless the guest OS is trusted.]]>
       <change state="vulnerable">a5efb3190913b6903775ca3756f79443d4ea8a5b</change>
       <change state="vulnerable">4ad6a013304f6fe29b0866742c902054bfbcf23f</change>
     </branch>
+    <branch>
+      <name>v1.2.1-maint</name>
+      <change state="vulnerable">cbb106f807b32f1f6af22d1e92fe0ff9ba6d73b3</change>
+      <change state="vulnerable">de858e3fa7ffcab5f80d07f8a74d94cbaf8716b9</change>
+      <change state="vulnerable">ed77abc58bc5a6837a5021f26e1a335dbfb477bf</change>
+      <change state="vulnerable">a5efb3190913b6903775ca3756f79443d4ea8a5b</change>
+      <change state="vulnerable">4ad6a013304f6fe29b0866742c902054bfbcf23f</change>
+    </branch>
   </product>

 </security-notice>
-- 
1.8.4.2

--
libvir-list mailing list
libvir-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/libvir-list
[Index of Archives]     [Virt Tools]     [Libvirt Users]     [Lib OS Info]     [Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [KDE Users]     [Fedora Tools]