Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
765c57a4 by Salvatore Bonaccorso at 2026-07-09T10:59:10+02:00
Add CVE-2026-3886/qemu

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,10 @@
+CVE-2026-3886 [virtio-gpu: fix overflow check when allocating 2d image]
+       - qemu 1:11.0.0+ds-1
+       [trixie] - qemu <no-dsa> (Minor issue)
+       [bookworm] - qemu <not-affected> (Vulnerable code not present)
+       [bullseye] - qemu <not-affected> (Vulnerable code not present)
+       NOTE: Introduced with: 
https://gitlab.com/qemu-project/qemu/-/commit/9462ff4695aa0d086fd63f7f2efafe5a05f2a243
 (v8.1.0-rc0)
+       NOTE: Fixed by: 
https://gitlab.com/qemu-project/qemu/-/commit/c035d5eadf400670593a76778f98f052d7482968
 (v11.0.0-rc0)
 CVE-2026-8801 (Path equivalence: vulnerability in Progress MOVEit Transfer 
(File Uplo ...)
        NOT-FOR-US: Progress Software
 CVE-2026-8800 (Incorrect Authorization vulnerability in Progress MOVEit 
Transfer (Aud ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/765c57a4cf2df2e0f269571390e8ad86a17e8aca

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/765c57a4cf2df2e0f269571390e8ad86a17e8aca
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to