[Git][security-tracker-team/security-tracker][master] Add CVE-2019-20808/qemu

Salvatore Bonaccorso carnil at debian.org
Fri May 29 12:16:47 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d2afb2d5 by Salvatore Bonaccorso at 2020-05-29T13:16:15+02:00
Add CVE-2019-20808/qemu

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -97,8 +97,10 @@ CVE-2020-13645 (In GNOME glib-networking through 2.64.2, the implementation of G
 	NOTE: https://gitlab.gnome.org/GNOME/glib-networking/-/issues/135
 	NOTE: Updating glib-networking to address CVE-2020-13645 will need a compatibility
 	NOTE: update as well for balsa (cf. https://bugs.debian.org/961792)
-CVE-2019-20808
+CVE-2019-20808 [out-of-bounds read in ati_cursor_define() function in hw/display/ati.c leads to DoS]
 	RESERVED
+	- qemu <unfixed>
+	NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=aab0e2a661b2b6bf7915c0aefe807fb60d6d9d13
 CVE-2019-20807 (In Vim before 8.1.0881, users can circumvent the rvim restricted mode  ...)
 	- vim 2:8.1.2136-1
 	[buster] - vim <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2afb2d5ad09b0c67e5779b64c857e41b78c214e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2afb2d5ad09b0c67e5779b64c857e41b78c214e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200529/3700b529/attachment.html>


More information about the debian-security-tracker-commits mailing list