-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 3.0 (quilt) Source: xen Binary: xen-docs-4.1, libxen-4.1, libxenstore3.0, libxen-dev, xenstore-utils, libxen-ocaml, libxen-ocaml-dev, xen-utils-common, xen-utils-4.1, xen-hypervisor-4.1-amd64, xen-system-amd64, xen-hypervisor-4.1-i386, xen-system-i386 Architecture: all amd64 i386 Version: 4.1.4-3+deb7u8 Maintainer: Debian Xen Team <[email protected]> Uploaders: Guido Trotter <[email protected]>, Bastian Blank <[email protected]> Standards-Version: 3.9.2 Build-Depends: debhelper (>> 7), dpkg-dev (>= 1.16.0~), lsb-release, python-dev, bcc, gcc-multilib, e2fslibs-dev, iasl, ipxe-qemu, libaio-dev, libgnutls-dev, liblzma-dev, libncurses5-dev, libpci-dev, pkg-config, uuid-dev, zlib1g-dev, ocaml-nox, dh-ocaml, ocaml-findlib Build-Depends-Indep: graphviz, ghostscript, texlive-fonts-recommended, texlive-font-utils, texlive-latex-recommended Package-List: libxen-4.1 deb libs optional libxen-dev deb libdevel optional libxen-ocaml deb ocaml optional libxen-ocaml-dev deb ocaml optional libxenstore3.0 deb libs optional xen-docs-4.1 deb doc optional xen-hypervisor-4.1-amd64 deb kernel optional xen-hypervisor-4.1-i386 deb kernel optional xen-system-amd64 deb kernel optional xen-system-i386 deb kernel optional xen-utils-4.1 deb kernel optional xen-utils-common deb kernel optional xenstore-utils deb admin optional Checksums-Sha1: 25ce9b87054be42db97939592a2cc7f4c02dfad7 3152298 xen_4.1.4.orig-qemu.tar.gz 925ea343a4cd3c90e409cba5d1e8cc02305445a2 6618565 xen_4.1.4.orig.tar.gz 0bd6b97bd76345a3f8f96a7bc120099234c34f18 253480 xen_4.1.4-3+deb7u8.debian.tar.gz Checksums-Sha256: dd0901aa63e7c780c4f5daa2b9079827a491e8feb64497b8a01928b9f0d1c7c7 3152298 xen_4.1.4.orig-qemu.tar.gz 19e0b97419cafcd0b51933b3403121b4b83a5f79d293291a0a92746346a019f1 6618565 xen_4.1.4.orig.tar.gz e12261d4d85b4f19753786a6d6ada1ba8115925576dac75eb0a63e6568a160c4 253480 xen_4.1.4-3+deb7u8.debian.tar.gz Files: e46da6b762d2b66122d087e3b93388ca 3152298 xen_4.1.4.orig-qemu.tar.gz f6637f921ff755a2ee3b48ff8db3f6b5 6618565 xen_4.1.4.orig.tar.gz d5470e7d4304706d1849fd31041eacb2 253480 xen_4.1.4-3+deb7u8.debian.tar.gz Python-Version: current -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJVeuRhAAoJEEnDv4knVT0ug9gP/2V6iOQn9LkbNRihMJVX0jZn sodHvZ07tEN8NKS230gDkoG+33eN1RhbNK8vjSl4TUXEzWiHLJl3F8FzlAyL0FAB hyL62M/kZWHw6Yo8PjRXHdBOAAYUhBBN60ELSVqo5Ed4Mzum6s0+qSjGlmprpDt2 6ObpEdbnw/gxcoNx5JoMmaXw6m31DMEyM1tYV0FsGGLhfLmCRcq+NJ9wuyW61q9w ZhS5ERbdw6zY2UoHjFj6mK153OC3gIlUy9dVJQlw7/QX5OfPifLtbZrxwY+6WnA2 vOypaldbBNHQUXgKUeGmXOGK6Vjh7o3BNDXzfO0QTGJ3KFr+8UGmSv82JyOR8avt CbCKqYPsv1WhOXLo57FfkdyqF9vN1PvfWwh+Obdm+piI6VQ41JNBBOqRiMY6D6ei pl5MeM3n5AyP27ZESFuCjJnZ8X75LsXl6BBcaLKkYaJ//vuoB1Nmb87a5nYbpGdc 2c9gJ5Vjd1jIOKMv3Ay+pDV/xMmPg8tfM3uXieBM7qc81Rb+lhYepVigYQtm73P2 OHHmXqtwhNKK6wre7+m06gc3QtzkmX1mMw6c95uPtgJMMBU1yslqBv8HFffej7p5 4V1J1yyocuLrfdiC0jj0RKP1VtJxEFSohD6T2Mb0KU8I92sVkhUwJxE9RnXV0Xdw LPEOOoUdxS/PiPMoobjo =bAbZ -----END PGP SIGNATURE----- Changes: xen (4.1.4-3+deb7u8) wheezy-security; urgency=low * Security upload. * CVE-2015-3209 (XSA 135) - qemu pcnet emulation fix * CVE-2015-4164 (XSA 136) - x86/traps: loop in the correct direction in compat_iret() * CVE-2015-4103 (XSA 128) - Potential unintended writes to host MSI message data field via qemu * CVE-2015-4104 (XSA 129) - PCI MSI mask bits inadvertently exposed to guests * CVE-2015-4105 (XSA 130) - Guest triggerable qemu MSI-X pass-through error messages * CVE-2015-3340 (XSA 132) - Information leak through XEN_DOMCTL_gettscinfo * CVE-2015-4106 (XSA 131) - Unmediated PCI register access in qemu -- Guido Trotter <[email protected]> Fri, 12 Jun 2015 13:09:44 +0000
