[Git][security-tracker-team/security-tracker][master] Add CVE-2019-8934/qemu
Salvatore Bonaccorso
carnil at debian.org
Thu Feb 21 15:12:42 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fec26a3e by Salvatore Bonaccorso at 2019-02-21T15:12:18Z
Add CVE-2019-8934/qemu
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -117,8 +117,11 @@ CVE-2019-8937
RESERVED
CVE-2019-8936
RESERVED
-CVE-2019-8934
+CVE-2019-8934 [ppc64: sPAPR emulator leaks the host hardware identity]
RESERVED
+ - qemu <unfixed>
+ - qemu-kvm <removed>
+ NOTE: https://lists.gnu.org/archive/html/qemu-devel/2019-02/msg04821.html
CVE-2019-8933 (In DedeCMS 5.7SP2, attackers can upload a .php file to the uploads/ ...)
NOT-FOR-US: DedeCMS
CVE-2019-8935 (Collabtive 3.1 allows XSS via the manageuser.php?action=profile id ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fec26a3ebe2c03238fc01eef38d7541ad745ec59
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fec26a3ebe2c03238fc01eef38d7541ad745ec59
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190221/9b776f7c/attachment.html>
More information about the debian-security-tracker-commits
mailing list