Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c6ea268e by Sylvain Beucler at 2023-03-14T15:00:46+01:00
CVE-2022-4144/qemu: buster postponed
- - - - -
e04cdcf3 by Sylvain Beucler at 2023-03-14T15:04:26+01:00
CVE-2023-0330/qemu: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13012,6 +13012,7 @@ CVE-2023-0330 (A vulnerability in the lsi53c895a device
affects the latest versi
- qemu <unfixed> (bug #1029155)
[bookworm] - qemu <no-dsa> (Minor issue)
[bullseye] - qemu <no-dsa> (Minor issue)
+ [buster] - qemu <postponed> (Minor issue, waiting for sanctioned patch)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2160151
NOTE: Proposed patch:
https://lists.nongnu.org/archive/html/qemu-devel/2023-01/msg03411.html
NOTE: No sanctioned upstream patch as of 2023-03-09
@@ -25613,6 +25614,7 @@ CVE-2022-45898
CVE-2022-4144 (An out-of-bounds read flaw was found in the QXL display device
emulati ...)
- qemu 1:7.2+dfsg-1
[bullseye] - qemu <no-dsa> (Minor issue)
+ [buster] - qemu <postponed> (Minor issue, DoS)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2148506
NOTE:
https://lists.nongnu.org/archive/html/qemu-devel/2022-11/msg04143.html
NOTE: https://gitlab.com/qemu-project/qemu/-/issues/1336
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/629d2aaf9e97ee59315bade07c0666111312bdd6...e04cdcf309558f3fb3b64ca621ea9b34f41351ab
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/629d2aaf9e97ee59315bade07c0666111312bdd6...e04cdcf309558f3fb3b64ca621ea9b34f41351ab
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits