* Status of KVM vulnerabilities
@ 2010-03-11 9:52 Daniel Bareiro
0 siblings, 0 replies; only message in thread
From: Daniel Bareiro @ 2010-03-11 9:52 UTC (permalink / raw)
To: KVM General
[-- Attachment #1: Type: text/plain, Size: 695 bytes --]
Hi, all.
Recently Debian has published the DSA-2010-1 [1] where the following
vulnerabilities are fixed:
* CVE-2010-0298 & CVE-2010-0306 (Gleb Natapov)
* CVE-2010-0309 (Marcelo Tosatti)
* CVE-2010-0419 (Paolo Bonzini)
I'm using Linux 2.6.32.3 with qemu-kvm-0.12.1.2 and I would like to know
if it is necessary to update kvm-kmod or qemu-kvm, if some of these
versions presents this vulnerability and some new version already exists
and fix it.
Thanks in advance for your replies.
Regards,
Daniel
[1] http://seclists.org/bugtraq/2010/Mar/98
--
Fingerprint: BFB3 08D6 B4D1 31B2 72B9 29CE 6696 BF1B 14E6 1D37
Powered by Debian GNU/Linux Lenny - Linux user #188.598
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 197 bytes --]
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2010-03-11 9:52 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2010-03-11 9:52 Status of KVM vulnerabilities Daniel Bareiro
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox