[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] Xen security issues

Op zondag 14 april 2013 11:15:03 schreef Ian Campbell:
> On Sun, 2013-04-14 at 08:05 +0100, AL13N wrote:
> > I'm the Mageia maintainer and i'm a bit behind on patching CVE-* .
> > 
> > can anyone help me find out which of these are actually applicable for
> > 4.1.2?
> You can find a list of the already public Xen security announcements,
> with CVE numbers and links to advisories, patches etc at:
> http://wiki.xen.org/wiki/Security_Announcements

the problem is not finding the patches :-)

the problem is which in those huge lists are actually applicable to that 
specific version: xen-4.2.1

or more, which aren't applicable :-).

> You should also consider asking to be on the vulnerability predisclosure
> list as described at:
> http://www.xen.org/projects/security_vulnerability_process.html
> Ian.

good idea...

Xen-devel mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.