[Git][security-tracker-team/security-tracker][master] Add CVE-2019-15890/qemu

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
475ba6fc by Salvatore Bonaccorso at 2019-09-06T19:36:11Z
Add CVE-2019-15890/qemu

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -172,8 +172,13 @@ CVE-2019-15893
 	RESERVED
 CVE-2019-15891
 	RESERVED
-CVE-2019-15890
+CVE-2019-15890 [Slirp: use-after-free during packet reassembly]
 	RESERVED
+	- slirp4netns <unfixed>
+	- qemu <unfixed>
+	- qemu-kvm <removed>
+	NOTE: https://www.openwall.com/lists/oss-security/2019/09/06/3
+	NOTE: https://gitlab.freedesktop.org/slirp/libslirp/commit/c59279437eda91841b9d26079c70b8a540d41204
 CVE-2019-15889 (The download-manager plugin before 2.9.94 for WordPress has XSS via th ...)
 	NOT-FOR-US: download-manager plugin for WordPress
 CVE-2019-15888



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/475ba6fcf2d225e79c0d62914bb10184472b945e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/475ba6fcf2d225e79c0d62914bb10184472b945e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190906/8c6aa2e2/attachment.html>