[Git][security-tracker-team/security-tracker][master] CVE-2017-13672/qemu: jessie <ignored>

Sylvain Beucler beuc at debian.org
Tue Sep 10 16:23:58 BST 2019 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3c4b0e27 by Sylvain Beucler at 2019-09-10T15:22:10Z
CVE-2017-13672/qemu: jessie <ignored>

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -111034,12 +111034,14 @@ CVE-2017-13673 (The vga display update in mis-calculated the region for the dirt
 CVE-2017-13672 (QEMU (aka Quick Emulator), when built with the VGA display emulator su ...)
 	{DSA-3991-1}
 	- qemu 1:2.10.0-1 (low; bug #873851)
-	[jessie] - qemu <no-dsa> (Minor issue. Too complex to backport)
+	[jessie] - qemu <ignored> (Minor issue, root DoS, too complex to backport)
 	[wheezy] - qemu <postponed> (Can be fixed along in a future DSA)
 	- qemu-kvm <removed>
 	[wheezy] - qemu-kvm <postponed> (Can be fixed along in a future DSA)
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2017-08/msg04684.html
 	NOTE: Fixed by https://git.qemu.org/gitweb.cgi?p=qemu.git;a=commit;h=3d90c6254863693a6b13d918d2b8682e08bbc681
+	NOTE: CentOS7 has a backport/upgrade(?) for their frankenstein version
+	NOTE: http://vault.centos.org/7.6.1810/updates/Source/SPackages/qemu-kvm-1.5.3-160.el7_6.3.src.rpm
 CVE-2017-13671 (app/View/Helper/CommandHelper.php in MISP before 2.4.79 has persistent ...)
 	NOT-FOR-US: MISP (Malware Information Sharing Platform and Threat Sharing)
 CVE-2017-13670 (In BlackCat CMS 1.2, remote authenticated users can upload any file vi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3c4b0e27950fc9ea55e931f9dfbe3d57f083c78f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3c4b0e27950fc9ea55e931f9dfbe3d57f083c78f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190910/cd43a057/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list