Debian 10260 Published by

Two security updates has been released for Debian: [SECURITY] [DSA 2612-2] ircd-ratbox update and [SECURITY] [DSA 2619-1] xen-qemu-dm-4.0 security update



[SECURITY] [DSA 2612-2] ircd-ratbox update
- -------------------------------------------------------------------------
Debian Security Advisory DSA-2612-2 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
February 10, 2013 http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : ircd-ratbox
Vulnerability : programming error
Problem type : remote
Debian-specific: no
CVE ID : CVE-2012-6084

This update to the previous ircd-ratbox DSA only raises the version number
to ensure that a higher version is used than a previously binNMU on some
architectures.

For the stable distribution (squeeze), this problem has been fixed in
version 3.0.6.dfsg-2+squeeze1.

We recommend that you upgrade your ircd-ratbox packages.
[SECURITY] [DSA 2619-1] xen-qemu-dm-4.0 security update
- -------------------------------------------------------------------------
Debian Security Advisory DSA-2619-1 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
February 10, 2013 http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : xen-qemu-dm-4.0
Vulnerability : buffer overflow
Problem type : remote
Debian-specific: no
CVE ID : CVE-2012-6075

A buffer overflow was found in the e1000e emulation, which could be
triggered when processing jumbo frames.

For the stable distribution (squeeze), this problem has been fixed in
version 4.0.1-2+squeeze3.

For the unstable distribution (sid), this problem has been fixed in
version 4.1.3-8 of the xen source package.

We recommend that you upgrade your xen-qemu-dm-4.0 packages.