[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-7550/qemu
Salvatore Bonaccorso
carnil at debian.org
Thu Mar 1 14:43:37 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f6f1d7d8 by Salvatore Bonaccorso at 2018-03-01T15:43:24+01:00
Add CVE-2018-7550/qemu
- - - - -
cedfc998 by Salvatore Bonaccorso at 2018-03-01T15:43:24+01:00
Tentatively work on the isc-dhcp update
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -106,8 +106,11 @@ CVE-2018-7552 (There is an invalid free in Mapping::DoubleHash::clear in mapping
CVE-2018-7551 (There is an invalid free in MiniPS::delete0 in minips.cpp that leads to ...)
- sam2p <removed>
NOTE: https://github.com/pts/sam2p/issues/28
-CVE-2018-7550
+CVE-2018-7550 [i386: multiboot OOB access while loading kernel image]
RESERVED
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-02/msg06890.html
CVE-2018-7549 (In params.c in zsh through 5.4.2, there is a crash during a copy of an ...)
- zsh <unfixed> (unimportant)
NOTE: https://sourceforge.net/p/zsh/code/ci/c2cc8b0fbefc9868fa83537f5b6d90fc1ec438dd
=====================================
data/dsa-needed.txt
=====================================
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -35,7 +35,7 @@ graphicsmagick
imagemagick
Wait until more issues have piled up
--
-isc-dhcp
+isc-dhcp (carnil)
--
knot-resolver
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/61d367664317bad86d39986cd3ce6ad0af933af1...cedfc99880187c189a9f46eb0381c5ab616d7753
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/61d367664317bad86d39986cd3ce6ad0af933af1...cedfc99880187c189a9f46eb0381c5ab616d7753
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180301/9b47e4ef/attachment-0001.html>
More information about the Secure-testing-commits
mailing list