Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
93d08098 by Salvatore Bonaccorso at 2021-12-17T08:41:23+01:00
Add CVE-2021-3929/qemu
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5865,8 +5865,12 @@ CVE-2021-3930 [off-by-one error in mode_sense_page() in
hw/scsi/scsi-disk.c]
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2020588
NOTE: https://gitlab.com/qemu-project/qemu/-/issues/546
NOTE: Fixed by:
https://gitlab.com/qemu-project/qemu/-/commit/b3af7fdf9cc537f8f0dd3e2423d83f5c99a457e8
-CVE-2021-3929
+CVE-2021-3929 [nvme: DMA reentrancy issue leads to use-after-free]
RESERVED
+ - qemu <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2020298
+ NOTE: https://gitlab.com/qemu-project/qemu/-/issues/556
+ NOTE: Proposed patchset:
https://lists.nongnu.org/archive/html/qemu-devel/2021-08/msg03692.html
CVE-2021-43400 (An issue was discovered in gatt-database.c in BlueZ 5.61. A
use-after- ...)
- bluez <unfixed> (bug #998626)
[stretch] - bluez <ignored> (invasive patch, requires post-stretch
revamps)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93d08098a82e28889f27a5352e31deb4028a5315
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93d08098a82e28889f27a5352e31deb4028a5315
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
