[Git][security-tracker-team/security-tracker][master] bug nums

Moritz Muehlenhoff (@jmm) Fri, 02 Jul 2021 01:45:44 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
87783aec by Moritz Mühlenhoff at 2021-07-02T10:45:14+02:00
bug nums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2353,7 +2353,7 @@ CVE-2021-XXXX [memory leak when authenticated client 
connects with MQTT v5 sent
        NOTE: https://mosquitto.org/blog/2021/06/version-2-0-11-released/
 CVE-2021-3611 [QEMU: intel-hda: segmentation fault due to stack overflow]
        RESERVED
-       - qemu <unfixed>
+       - qemu <unfixed> (bug #990562)
        [buster] - qemu <not-affected> (Vulnerable code introduced later)
        [stretch] - qemu <not-affected> (Vulnerable code introduced later)
        NOTE: https://bugs.launchpad.net/qemu/+bug/1907497
@@ -2825,12 +2825,12 @@ CVE-2021-34827
        RESERVED
 CVE-2021-3608 [pvrdma: uninitialized memory unmap in pvrdma_ring_init()]
        RESERVED
-       - qemu <unfixed>
+       - qemu <unfixed> (bug #990563)
        [stretch] - qemu <not-affected> (Vulnerable code introduced later)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1973383
 CVE-2021-3607 [pvrdma: unchecked malloc size due to integer overflow in 
init_dev_ring()]
        RESERVED
-       - qemu <unfixed>
+       - qemu <unfixed> (bug #990564)
        [stretch] - qemu <not-affected> (Vulnerable code introduced later)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1973349
 CVE-2021-3606
@@ -4862,7 +4862,7 @@ CVE-2021-3587 [nfc: fix NULL ptr dereference in 
llcp_sock_getname() after failed
        NOTE: 
https://git.kernel.org/linus/4ac06a1e013cf5fdd963317ffd3b968560f33bba
 CVE-2021-3582 [hw/rdma: Fix possible mremap overflow in the pvrdma device]
        RESERVED
-       - qemu <unfixed>
+       - qemu <unfixed> (bug #990565)
        [stretch] - qemu <not-affected> (Vulnerable code introduced later)
        NOTE: 
https://lists.nongnu.org/archive/html/qemu-devel/2021-06/msg04148.html
 CVE-2021-33907
@@ -31145,7 +31145,7 @@ CVE-2021-22919
        RESERVED
 CVE-2021-22918
        RESERVED
-       - libuv1 <unfixed>
+       - libuv1 <unfixed> (bug #990561)
        NOTE: 
https://nodejs.org/en/blog/vulnerability/july-2021-security-releases/
        NOTE: 
https://github.com/nodejs/node/commit/d33aead28bcec32a2a450f884907a6d971631829
 CVE-2021-22917



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/87783aec2bcba0475953e40d4ee5bf9a38a7d960

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/87783aec2bcba0475953e40d4ee5bf9a38a7d960
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] bug nums

Reply via email to