oss-sec mailing list archives
re: Xen Security Advisory 65 (CVE-2013-4344) - qemu SCSI REPORT LUNS buffer overflow
From: security curmudgeon <jericho () attrition org>
Date: Wed, 2 Oct 2013 14:14:00 -0500 (CDT)
: Please refer to the advisories and information from the Qemu project.What advisories and information? Qemu page shows last release Aug 27 and the changelog does not appear to reference this issue. There are no obvious 'security advisory' links off their navigation menu.
Could you please include such links in YOUR advisories so we don't have to go chasing them down, since you have clearly seen them given the wording above?
Current thread:
- Xen Security Advisory 65 (CVE-2013-4344) - qemu SCSI REPORT LUNS buffer overflow Xen . org security team (Oct 02)
- <Possible follow-ups>
- re: Xen Security Advisory 65 (CVE-2013-4344) - qemu SCSI REPORT LUNS buffer overflow security curmudgeon (Oct 02)