[Git][security-tracker-team/security-tracker][master] CVE-2015-8818/qemu does not affect qemu in Debian jessie, problematic commit...
Mike Gabriel
sunweaver at debian.org
Mon May 27 11:32:57 BST 2019
Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f3e64182 by Mike Gabriel at 2019-05-27T10:32:39Z
CVE-2015-8818/qemu does not affect qemu in Debian jessie, problematic commit 965eb2f not shipped in jessie's version of qemu.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -159564,7 +159564,7 @@ CVE-2016-2784 (CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smar
NOT-FOR-US: CMS Made Simple
CVE-2015-8818 (The cpu_physical_memory_write_rom_internal function in exec.c in QEMU ...)
- qemu 1:2.4+dfsg-1a
- [jessie] - qemu <ignored> (Minor issue; too dangerous backport)
+ [jessie] - qemu <not-affected> (Problematic memory clamping code got added later with upstream commit 965eb2f)
[wheezy] - qemu <not-affected> (Affects Qemu versions >= 1.6.0 and <= 2.3.1)
[squeeze] - qemu <not-affected> (Affects Qemu versions >= 1.6.0 and <= 2.3.1)
- qemu-kvm <not-affected> (Affects Qemu versions >= 1.6.0 and <= 2.3.1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3e641821b00dac668be7fef91692f70b4087fec
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3e641821b00dac668be7fef91692f70b4087fec
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190527/1eba285a/attachment.html>
More information about the debian-security-tracker-commits
mailing list