Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7d335952 by Salvatore Bonaccorso at 2018-08-28T19:54:32Z
Mark CVE-2018-15746/qemu as no-dsa
Eventually we can as well just mark it as <ignored>. The seccomp support
is only enabled later, sourcwise we would be affected already before.
Note to reviewers: I would tend to prefer to mark correctly the
source-wise status and have it marked as affected, but make clear no DSA
is needed. So we could change <no-dsa> to <ignored> instead.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -408,6 +408,7 @@ CVE-2018-15747
CVE-2018-15746 [seccomp: blacklist is not applied to all threads]
RESERVED
- qemu <unfixed>
+ [stretch] - qemu <no-dsa> (Minor issue; seccomp support not enabled)
- qemu-kvm <removed>
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2018-08/msg02289.html
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2018-08/msg04892.html
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/7d33595267be7f3332ac59b1b60ac4160ccabe54
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/7d33595267be7f3332ac59b1b60ac4160ccabe54
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
