Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 765c57a4 by Salvatore Bonaccorso at 2026-07-09T10:59:10+02:00 Add CVE-2026-3886/qemu - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,10 @@ +CVE-2026-3886 [virtio-gpu: fix overflow check when allocating 2d image] + - qemu 1:11.0.0+ds-1 + [trixie] - qemu <no-dsa> (Minor issue) + [bookworm] - qemu <not-affected> (Vulnerable code not present) + [bullseye] - qemu <not-affected> (Vulnerable code not present) + NOTE: Introduced with: https://gitlab.com/qemu-project/qemu/-/commit/9462ff4695aa0d086fd63f7f2efafe5a05f2a243 (v8.1.0-rc0) + NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/c035d5eadf400670593a76778f98f052d7482968 (v11.0.0-rc0) CVE-2026-8801 (Path equivalence: vulnerability in Progress MOVEit Transfer (File Uplo ...) NOT-FOR-US: Progress Software CVE-2026-8800 (Incorrect Authorization vulnerability in Progress MOVEit Transfer (Aud ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/765c57a4cf2df2e0f269571390e8ad86a17e8aca -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/765c57a4cf2df2e0f269571390e8ad86a17e8aca You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
