Lines 289-297
Link Here
|
289 |
</vuln> |
289 |
</vuln> |
290 |
|
290 |
|
291 |
<vuln vid="f06f20dc-4347-11e5-93ad-002590263bf5"> |
291 |
<vuln vid="f06f20dc-4347-11e5-93ad-002590263bf5"> |
292 |
<topic>xen-tools -- QEMU leak of uninitialized heap memory in rtl8139 device model</topic> |
292 |
<topic>qemu, xen-tools -- QEMU leak of uninitialized heap memory in rtl8139 device model</topic> |
293 |
<affects> |
293 |
<affects> |
294 |
<package> |
294 |
<package> |
|
|
295 |
<name>qemu</name> |
296 |
<name>qemu-devel</name> |
297 |
<range><le>0.11.1_20</le></range> |
298 |
<range><ge>0.12</ge><le>2.3.0_2</le></range> |
299 |
</package> |
300 |
<package> |
301 |
<name>qemu-sbruno</name> |
302 |
<name>qemu-user-static</name> |
303 |
<range><lt>2.4.50.g20150814</lt></range> |
304 |
</package> |
305 |
<package> |
295 |
<name>xen-tools</name> |
306 |
<name>xen-tools</name> |
296 |
<range><lt>4.5.1</lt></range> |
307 |
<range><lt>4.5.1</lt></range> |
297 |
</package> |
308 |
</package> |
Lines 315-331
Link Here
|
315 |
<references> |
326 |
<references> |
316 |
<cvename>CVE-2015-5165</cvename> |
327 |
<cvename>CVE-2015-5165</cvename> |
317 |
<url>http://xenbits.xen.org/xsa/advisory-140.html</url> |
328 |
<url>http://xenbits.xen.org/xsa/advisory-140.html</url> |
|
|
329 |
<url>http://git.qemu.org/?p=qemu.git;a=commit;h=2a3612ccc1fa9cea77bd193afbfe21c77e7e91ef</url> |
318 |
</references> |
330 |
</references> |
319 |
<dates> |
331 |
<dates> |
320 |
<discovery>2015-08-03</discovery> |
332 |
<discovery>2015-08-03</discovery> |
321 |
<entry>2015-08-17</entry> |
333 |
<entry>2015-08-17</entry> |
|
|
334 |
<modified>2015-08-19</modified> |
322 |
</dates> |
335 |
</dates> |
323 |
</vuln> |
336 |
</vuln> |
324 |
|
337 |
|
325 |
<vuln vid="ee99899d-4347-11e5-93ad-002590263bf5"> |
338 |
<vuln vid="ee99899d-4347-11e5-93ad-002590263bf5"> |
326 |
<topic>xen-tools -- use after free in QEMU/Xen block unplug protocol</topic> |
339 |
<topic>qemu, xen-tools -- use after free in QEMU/Xen block unplug protocol</topic> |
327 |
<affects> |
340 |
<affects> |
328 |
<package> |
341 |
<package> |
|
|
342 |
<name>qemu</name> |
343 |
<name>qemu-devel</name> |
344 |
<range><le>0.11.1_20</le></range> |
345 |
<range><ge>0.12</ge><le>2.3.0_2</le></range> |
346 |
</package> |
347 |
<package> |
348 |
<name>qemu-sbruno</name> |
349 |
<name>qemu-user-static</name> |
350 |
<range><lt>2.4.50.g20150814</lt></range> |
351 |
</package> |
352 |
<package> |
329 |
<name>xen-tools</name> |
353 |
<name>xen-tools</name> |
330 |
<range><lt>4.5.1</lt></range> |
354 |
<range><lt>4.5.1</lt></range> |
331 |
</package> |
355 |
</package> |
Lines 346-355
Link Here
|
346 |
<references> |
370 |
<references> |
347 |
<cvename>CVE-2015-5166</cvename> |
371 |
<cvename>CVE-2015-5166</cvename> |
348 |
<url>http://xenbits.xen.org/xsa/advisory-139.html</url> |
372 |
<url>http://xenbits.xen.org/xsa/advisory-139.html</url> |
|
|
373 |
<url>http://git.qemu.org/?p=qemu.git;a=commit;h=260425ab405ea76c44dd59744d05176d4f579a52</url> |
349 |
</references> |
374 |
</references> |
350 |
<dates> |
375 |
<dates> |
351 |
<discovery>2015-08-03</discovery> |
376 |
<discovery>2015-08-03</discovery> |
352 |
<entry>2015-08-17</entry> |
377 |
<entry>2015-08-17</entry> |
|
|
378 |
<modified>2015-08-19</modified> |
353 |
</dates> |
379 |
</dates> |
354 |
</vuln> |
380 |
</vuln> |
355 |
|
381 |
|
Lines 1224-1232
Link Here
|
1224 |
</vuln> |
1250 |
</vuln> |
1225 |
|
1251 |
|
1226 |
<vuln vid="da451130-365d-11e5-a4a5-002590263bf5"> |
1252 |
<vuln vid="da451130-365d-11e5-a4a5-002590263bf5"> |
1227 |
<topic>xen-tools -- QEMU heap overflow flaw with certain ATAPI commands</topic> |
1253 |
<topic>qemu, xen-tools -- QEMU heap overflow flaw with certain ATAPI commands</topic> |
1228 |
<affects> |
1254 |
<affects> |
1229 |
<package> |
1255 |
<package> |
|
|
1256 |
<name>qemu</name> |
1257 |
<name>qemu-devel</name> |
1258 |
<range><le>0.11.1_20</le></range> |
1259 |
<range><ge>0.12</ge><le>2.3.0_2</le></range> |
1260 |
</package> |
1261 |
<package> |
1262 |
<name>qemu-sbruno</name> |
1263 |
<name>qemu-user-static</name> |
1264 |
<range><lt>2.4.50.g20150814</lt></range> |
1265 |
</package> |
1266 |
<package> |
1230 |
<name>xen-tools</name> |
1267 |
<name>xen-tools</name> |
1231 |
<range><lt>4.5.0_9</lt></range> |
1268 |
<range><lt>4.5.0_9</lt></range> |
1232 |
</package> |
1269 |
</package> |
Lines 1248-1257
Link Here
|
1248 |
<references> |
1285 |
<references> |
1249 |
<cvename>CVE-2015-5154</cvename> |
1286 |
<cvename>CVE-2015-5154</cvename> |
1250 |
<url>http://xenbits.xen.org/xsa/advisory-138.html</url> |
1287 |
<url>http://xenbits.xen.org/xsa/advisory-138.html</url> |
|
|
1288 |
<url>http://git.qemu.org/?p=qemu.git;a=commit;h=e40db4c6d391419c0039fe274c74df32a6ca1a28</url> |
1251 |
</references> |
1289 |
</references> |
1252 |
<dates> |
1290 |
<dates> |
1253 |
<discovery>2015-07-27</discovery> |
1291 |
<discovery>2015-07-27</discovery> |
1254 |
<entry>2015-08-04</entry> |
1292 |
<entry>2015-08-04</entry> |
|
|
1293 |
<modified>2015-08-19</modified> |
1255 |
</dates> |
1294 |
</dates> |
1256 |
</vuln> |
1295 |
</vuln> |
1257 |
|
1296 |
|