Re: Qemu CVEs in Xen

To: Guido Günther <agx@sigxcpu.org>, Hugo Lefeuvre <hle@debian.org>, debian-lts@lists.debian.org
Subject: Re: Qemu CVEs in Xen
From: Raphael Hertzog <hertzog@debian.org>
Date: Fri, 25 Nov 2016 10:19:53 +0100
Message-id: <[🔎] 20161125091953.3kvk7ltg2esz7jdj@home.ouaza.com>
Mail-followup-to: Raphael Hertzog <hertzog@debian.org>, Guido Günther <agx@sigxcpu.org>, Hugo Lefeuvre <hle@debian.org>, debian-lts@lists.debian.org
In-reply-to: <[🔎] 20161104082135.7mbwnzzswxcbahfo@bogon.m.sigxcpu.org>
References: <20161030113043.drkvg6tpheg3wkyw@bogon.m.sigxcpu.org> <20161030121457.kvndk24mvsbbafpj@hle.local> <[🔎] 20161104082135.7mbwnzzswxcbahfo@bogon.m.sigxcpu.org>

Hi Hugo,

how far are you with the triaging?

On Fri, 04 Nov 2016, Guido Günther wrote:
> > I wasn't aware that Xen was embedding QEMU (what a weird idea !?).
> 
> I triaged the current ones (thankfully we don't have 9pfs in that
> version) up to CVE-2016-8669 and will check with the xen guys on how to
> proceed with the backlog.

What's the status? I think we should ask credativ to start looking into
the already identified CVE, no?

Cheers,
-- 
Raphaël Hertzog ◈ Debian Developer

Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/

Reply to:

Follow-Ups:
- Re: Qemu CVEs in Xen
  - From: Hugo Lefeuvre <hle@debian.org>

References:
- Re: Qemu CVEs in Xen
  - From: Guido Günther <agx@sigxcpu.org>

Prev by Date: Re: Wheezy update of w3m?
Next by Date: Re: [pkg-lxc-devel] Wheezy update of lxc?
Previous by thread: Re: Qemu CVEs in Xen
Next by thread: Re: Qemu CVEs in Xen
Index(es):
- Date
- Thread