data/CVE/list

@@ -5,14 +5,14 @@ CVE-2018-XXXX [libykneomgr memory corruption]
 CVE-2018-XXXX [XSA 272: oxenstored does not apply quota-maxentity]
 	- xen <unfixed> (unimportant)
 	NOTE: https://xenbits.xen.org/xsa/advisory-272.html
-CVE-2018-XXXX [XSA 270]
+CVE-2018-XXXX [XSA 270: Linux netback driver OOB access in hash handling]
 	- linux <unfixed>
 	NOTE: https://xenbits.xen.org/xsa/advisory-270.html
-CVE-2018-XXXX [XSA 269]
+CVE-2018-XXXX [XSA 269: x86: Incorrect MSR_DEBUGCTL handling lets guests enable BTS]
 	- xen <unfixed>
 	[jessie] - xen <not-affected> (Only affects 4.6 and later)
 	NOTE: https://xenbits.xen.org/xsa/advisory-269.html
-CVE-2018-XXXX [XSA 268]
+CVE-2018-XXXX [XSA 268: Use of v2 grant tables may cause crash on ARM]
 	- xen <unfixed>
 	NOTE: https://xenbits.xen.org/xsa/advisory-268.html
 CVE-2018-15309
@@ -3227,8 +3227,10 @@ CVE-2018-14009 (Codiad through 2.8.4 allows Remote Code Execution, a different .
 	NOT-FOR-US: Codiad
 CVE-2018-14008
 	RESERVED
-CVE-2018-14007
+CVE-2018-14007 [XAPI HTTP directory traversal]
 	RESERVED
+	NOTE: https://xenbits.xen.org/xsa/advisory-271.html
+	TODO: check
 CVE-2018-14006 (An integer overflow vulnerability exists in the function ...)
 	NOT-FOR-US: Neo Genesis Token (NGT)
 CVE-2018-14005 (An integer overflow vulnerability exists in the function transferAny of ...)