Debian Bug report logs -
#1014414
xen: New unreleased upstream fixes for 6 vulnerabilities in testing/unstable
Reply or subscribe to this bug.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, team@security.debian.org, Debian Xen Team <pkg-xen-devel@lists.alioth.debian.org>
:
Bug#1014414
; Package src:xen
.
(Tue, 05 Jul 2022 16:00:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Luís Infante da Câmara <luis.infante.da.camara@tecnico.ulisboa.pt>
:
New Bug report received and forwarded. Copy sent to team@security.debian.org, Debian Xen Team <pkg-xen-devel@lists.alioth.debian.org>
.
(Tue, 05 Jul 2022 16:00:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Source: xen
Version: 4.16.1-1
Severity: critical
Tags: security upstream
Justification: root security hole
X-Debbugs-Cc: Debian Security Team <team@security.debian.org>
Dear Maintainer,
The upstream stable branch (stable-4.16 in
https://xenbits.xen.org/gitweb/?p=xen.git;a=summary) contains fixes for
CVE-2022-21123, CVE-2022-21125, CVE-2022-21166, CVE-2022-26362,
CVE-2022-26363 and CVE-2022-26364, that are not in any Xen release.
An upstream tarball and patched source and binary packages for Ubuntu
22.04 are available in my PPA:
https://launchpad.net/~luis220413/+archive/ubuntu/security-updates
Kind regards,
Luís Infante da Câmara
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jul 6 13:16:00 2022;
Machine Name:
bembo
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.