[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2018-18954/qemu
Salvatore Bonaccorso
carnil at debian.org
Sun Nov 25 15:47:20 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f6de298f by Salvatore Bonaccorso at 2018-11-25T15:46:39Z
Reference upstream commit for CVE-2018-18954/qemu
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1677,7 +1677,7 @@ CVE-2018-18954 (The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before
[stretch] - qemu <postponed> (Minor issue, can be backported once fixed upstream)
[jessie] - qemu <not-affected> (Vulnerable code not present. ppc/pnv lpc was added in 2.7)
- qemu-kvm <removed>
- NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html
+ NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=d07945e78eb6b593cd17a4640c1fc9eb35e3245d
CVE-2018-18953
RESERVED
CVE-2018-18952 (JEECMS 9.3 has XSS via an index.do#/content/update?type=update URI. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f6de298fa879888bf0128fb954f4d7e514ddcd99
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f6de298fa879888bf0128fb954f4d7e514ddcd99
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181125/c4ce9120/attachment.html>
More information about the debian-security-tracker-commits
mailing list