[Secure-testing-commits] r51701 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed May 17 18:09:04 UTC 2017
Author: carnil
Date: 2017-05-17 18:09:03 +0000 (Wed, 17 May 2017)
New Revision: 51701
Modified:
data/CVE/list
Log:
Three more CVEs fixed in unstable upload for qemu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-17 17:49:30 UTC (rev 51700)
+++ data/CVE/list 2017-05-17 18:09:03 UTC (rev 51701)
@@ -2200,7 +2200,7 @@
CVE-2017-8113
RESERVED
CVE-2017-8112 (hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest ...)
- - qemu <unfixed> (bug #861351)
+ - qemu 1:2.8+dfsg-5 (bug #861351)
[wheezy] - qemu <not-affected> (Vulnerable code not present)
- qemu-kvm <not-affected> (Vulnerable code not present)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2017-04/msg04578.html
@@ -2267,7 +2267,7 @@
CVE-2017-8087
RESERVED
CVE-2017-8086 (Memory leak in the v9fs_list_xattr function in hw/9pfs/9p-xattr.c in ...)
- - qemu <unfixed> (bug #861348)
+ - qemu 1:2.8+dfsg-5 (bug #861348)
- qemu-kvm <removed>
NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=4ffcdef4277a91af15a3c09f7d16af072c29f3f2 (v2.9.0-rc4)
NOTE: Introduced possibly by the fix d10142c11bdcecebe97fd834a834167053b7a05c to
@@ -4125,7 +4125,7 @@
NOTE: https://lkml.org/lkml/2017/4/3/724
CVE-2017-7471 [9p: virtfs allows guest to change filesystem attributes on host]
RESERVED
- - qemu <unfixed> (bug #860785)
+ - qemu 1:2.8+dfsg-5 (bug #860785)
[jessie] - qemu <not-affected> (Vulnerable code introduced with fix for CVE-2016-9602)
[wheezy] - qemu <not-affected> (Vulnerable code introduced with fix for CVE-2016-9602)
- qemu-kvm <not-affected> (Vulnerable code introduced with fix for CVE-2016-9602)
More information about the Secure-testing-commits
mailing list