[Git][security-tracker-team/security-tracker][master] Mark CVE-2019-3886 as not affecting (old)stable

Mon Apr 8 10:36:52 BST 2019


Guido Günther pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c96b4bd0 by Guido Günther at 2019-04-08T09:35:25Z
Mark CVE-2019-3886 as not affecting (old)stable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -17177,10 +17177,12 @@ CVE-2019-3887 [KVM: x86: nVMX: close leak of L0's x2APIC MSR]
 	NOTE: Fixed by: https://git.kernel.org/linus/c73f4c998e1fd4249b9edfa39e23f4fda2b9b041
 CVE-2019-3886 (An incorrect permissions check was discovered in libvirt 4.8.0 and abo ...)
 	- libvirt 5.0.0-2 (low; bug #926418)
-	[stretch] - libvirt <no-dsa> (Minor issue)
+	[stretch] - libvirt <not-affected> (Vulnerable code not present)
+	[jessie] - libvirt <not-affected> (Vulnerable code not present)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1694880
 	NOTE: https://www.redhat.com/archives/libvir-list/2019-April/msg00339.html
 	NOTE: https://bugzilla.novell.com/show_bug.cgi?id=1131595#c3
+	NOTE: Introduced in https://libvirt.org/git/?p=libvirt.git;a=commit;h=25736a4c7ed50c101b4f87935f350f1a39a89f6e
 CVE-2019-3885
 	RESERVED
 CVE-2019-3884



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c96b4bd0082181c9a844fcb66d7c4bcdcd655503

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c96b4bd0082181c9a844fcb66d7c4bcdcd655503
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190408/d0ec4fe8/attachment.html>
