subject:"Bug#1085137\: libxen\: Libxen Includes Code Similar to LZO Decompressor with a Known CVE"

Bug#1085137: libxen: Libxen Includes Code Similar to LZO Decompressor with a Known CVE

2024-10-16 Thread Andrew Cooper

On Tue, 15 Oct 2024 14:20:02 +0400 Mariam Arutunian wrote: > Package: libxen > Version: 4.17.3 > Severity: normal > X-Debbugs-Cc: mariamarutun...@gmail.com > > Dear Maintainer, > A vulnerability identified as CVE-2014-4608 was discovered and fixed in LZO decompressor in the Linux kernel with the f

Bug#1085137: libxen: Libxen Includes Code Similar to LZO Decompressor with a Known CVE

2024-10-15 Thread Mariam Arutunian

Package: libxen Version: 4.17.3 Severity: normal X-Debbugs-Cc: mariamarutun...@gmail.com Dear Maintainer, A vulnerability identified as CVE-2014-4608 was discovered and fixed in LZO decompressor in the Linux kernel with the following commit: https://github.com/torvalds/linux/commit/206a81c18401c