[Git][security-tracker-team/security-tracker][master] reserve DLA-1694-1 for qemu jessie update

Hugo Lefeuvre hle at debian.org
Thu Feb 28 08:24:42 GMT 2019


Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e35b2790 by Hugo Lefeuvre at 2019-02-28T08:23:23Z
reserve DLA-1694-1 for qemu jessie update

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[28 Feb 2019] DLA-1694-1 qemu - security update
+	{CVE-2018-12617 CVE-2018-16872 CVE-2019-6778}
+	[jessie] - qemu 1:2.1+dfsg-12+deb8u10
 [27 Feb 2019] DLA-1693-1 gpac - security update
 	{CVE-2018-7752 CVE-2018-20760 CVE-2018-20761 CVE-2018-20762 CVE-2018-20763}
 	[jessie] - gpac 0.5.0+svn5324~dfsg1-1+deb8u2


=====================================
data/dla-needed.txt
=====================================
@@ -103,11 +103,8 @@ php5 (Thorsten Alteholz)
 polarssl
   NOTE: 20121207: Not 100% sure if vulnerable. Upstream would prefer us to move to latest version, etc. (!). (lamby)
 --
-qemu (Hugo Lefeuvre)
-  NOTE: CVE-2018-19665: working on a highly trimmed down version of upstream patch
-  NOTE: CVE-2018-19665: also, current patch will not be merged by upstream, wait for updated version
-  NOTE: CVE-2018-19665: see https://lists.debian.org/debian-lts/2019/01/msg00073.html
-  NOTE: 20190225: upload ready, currently testing it.
+qemu
+  NOTE: CVE-2018-19665: wait for final patch
 --
 rdflib
   NOTE: Maintainer not contacted. Follow the debian bug about status. This should probably be fixed.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e35b27903734a79b1fb0ff3faaf9ea45c6fc8025

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e35b27903734a79b1fb0ff3faaf9ea45c6fc8025
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190228/b360be1c/attachment.html>


More information about the debian-security-tracker-commits mailing list