[Git][security-tracker-team/security-tracker][master] Add CVE-2020-8608/libslirp

Thu Feb 6 06:23:07 GMT 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
21ba921d by Salvatore Bonaccorso at 2020-02-06T07:22:12+01:00
Add CVE-2020-8608/libslirp

The situation around libslrip is very chaotic, do we really need all of
those slirp related packages?

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -68,6 +68,13 @@ CVE-2020-8609
 	RESERVED
 CVE-2020-8608
 	RESERVED
+	- libslirp <unfixed>
+	- qemu 1:4.1-2
+	- qemu-kvm <removed>
+	- slirp <unfixed>
+	- slirp4netns <unfixed>
+	NOTE: https://gitlab.freedesktop.org/slirp/libslirp/commit/68ccb8021a838066f0951d4b2817eb6b6f10a843
+	NOTE: qemu 1:4.1-2 switched to system libslirp, marking that version as fixed.
 CVE-2020-8607
 	RESERVED
 CVE-2020-8606



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/21ba921d7f2b7b8afb7dc811c57db47a2bd053b4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/21ba921d7f2b7b8afb7dc811c57db47a2bd053b4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200206/b27f2d1d/attachment.html>
