Summary: | app-emulation/libvirt privilege escalation (CVE-2008-4405,CVE-2008-5716) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Stefan Behte (RETIRED) <craig> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | rbu, xen |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | ~4 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Stefan Behte (RETIRED)
2008-10-10 19:29:44 UTC
The patch: http://xenbits.xensource.com/staging/xen-3.3-testing.hg?rev/e0e17216ba70 Info: http://openwall.com/lists/oss-security/2008/09/30/6 http://secunia.com/advisories/32064 The patch is incomplete, as noted here: http://thread.gmane.org/gmane.comp.security.oss.general/1344/ This incomplete patch has been assigned CVE-2008-5716. *** Bug 252731 has been marked as a duplicate of this bug. *** Can this be closed? the oldest version in the tree is 0.4.6 Oldest version in the tree is now 0.6.3. Looking for some follow up from the security team since it's their bug. Closing noglsa, as it never had a stable version. |