[Git][security-tracker-team/security-tracker][master] Update severity for CVE-2019-12247/qemu
Salvatore Bonaccorso
carnil at debian.org
Thu May 30 21:04:32 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
11a0b378 by Salvatore Bonaccorso at 2019-05-30T20:04:12Z
Update severity for CVE-2019-12247/qemu
Whilst beeing a bug needed to be fixed upstream disputed the issue to be
actually exploitable. https://lists.gnu.org/archive/html/qemu-devel/2019-05/msg05457.html
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -468,9 +468,11 @@ CVE-2019-12249
CVE-2019-12248
RESERVED
CVE-2019-12247 (QEMU 3.0.0 has an Integer Overflow because the qga/commands*.c files d ...)
- - qemu <unfixed> (bug #929365)
- - qemu-kvm <removed>
+ - qemu <unfixed> (unimportant; bug #929365)
+ - qemu-kvm <removed> (unimportant)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2019-05/msg04596.html
+ NOTE: https://lists.gnu.org/archive/html/qemu-devel/2019-05/msg05457.html
+ NOTE: Disputed upstream as not beeing exploitable.
CVE-2019-12246
RESERVED
CVE-2019-12245
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/11a0b3787137e57c334d6347f96049d76fc5b85b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/11a0b3787137e57c334d6347f96049d76fc5b85b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190530/eb9203a2/attachment.html>
More information about the debian-security-tracker-commits
mailing list