[Git][security-tracker-team/security-tracker][master] qemu fixed in sid

Thu, 25 Apr 2024 05:03:39 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
b19b629f by Moritz Muehlenhoff at 2024-04-25T14:02:55+02:00
qemu fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19414,18 +19414,22 @@ CVE-2024-23114 (Deserialization of Untrusted Data 
vulnerability in Apache Camel
 CVE-2024-22369 (Deserialization of Untrusted Data vulnerability in Apache 
Camel SQL Co ...)
        NOT-FOR-US: Apache Camel
 CVE-2024-26328 (An issue was discovered in QEMU 7.1.0 through 8.2.1. 
register_vfs in h ...)
-       - qemu <unfixed> (bug #1068819)
+       - qemu 1:8.2.3+ds-1 (bug #1068819)
        [bookworm] - qemu <no-dsa> (Minor issue)
        [bullseye] - qemu <not-affected> (Vulnerable code introduced later)
        [buster] - qemu <not-affected> (Vulnerable code introduced later)
        NOTE: Introduced by: 
https://gitlab.com/qemu-project/qemu/-/commit/7c0fa8dff811b5648964630a1334c3bb97e1e1c6
 (v7.0.0-rc0)
+       NOTE: 
https://gitlab.com/qemu-project/qemu/-/commit/91bb64a8d2014fda33a81fcf0fce37340f0d3b0c
 (v9.0.0-rc0)
+       NOTE: 
https://gitlab.com/qemu-project/qemu/-/commit/98f3488c1b6090024299f8d6362aa6aac03fe26d
 (v8.2.3)
        NOTE: 
https://lore.kernel.org/all/20240213055345-mutt-send-email-mst%40kernel.org
 CVE-2024-26327 (An issue was discovered in QEMU 7.1.0 through 8.2.1. 
register_vfs in h ...)
-       - qemu <unfixed> (bug #1068819)
+       - qemu 1:8.2.3+ds-1 (bug #1068819)
        [bookworm] - qemu <no-dsa> (Minor issue)
        [bullseye] - qemu <not-affected> (Vulnerable code introduced later)
        [buster] - qemu <not-affected> (Vulnerable code introduced later)
        NOTE: Introduced by: 
https://gitlab.com/qemu-project/qemu/-/commit/7c0fa8dff811b5648964630a1334c3bb97e1e1c6
 (v7.0.0-rc0)
+       NOTE: 
https://gitlab.com/qemu-project/qemu/-/commit/6081b4243cd64dff1b2cf5b0c215c71e9d7e753b
 (v9.0.0-rc0)
+       NOTE: 
https://gitlab.com/qemu-project/qemu/-/commit/313e746958967a4b941ad4bbb80726727318edfa
 (v8.2.3)
        NOTE: 
https://lore.kernel.org/all/20240214-reuse-v4-5-89ad093a07f4%40daynix.com/
 CVE-2024-26318 (Serenity before 6.8.0 allows XSS via an email link because 
LoginPage.t ...)
        NOT-FOR-US: Serenity



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b19b629f44b01172a82d4260443f176753f965d8

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b19b629f44b01172a82d4260443f176753f965d8
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to