[Git][security-tracker-team/security-tracker][master] Add CVE-2021-3929/qemu
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Dec 17 07:41:53 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
93d08098 by Salvatore Bonaccorso at 2021-12-17T08:41:23+01:00
Add CVE-2021-3929/qemu
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5865,8 +5865,12 @@ CVE-2021-3930 [off-by-one error in mode_sense_page() in hw/scsi/scsi-disk.c]
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2020588
NOTE: https://gitlab.com/qemu-project/qemu/-/issues/546
NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/b3af7fdf9cc537f8f0dd3e2423d83f5c99a457e8
-CVE-2021-3929
+CVE-2021-3929 [nvme: DMA reentrancy issue leads to use-after-free]
RESERVED
+ - qemu <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2020298
+ NOTE: https://gitlab.com/qemu-project/qemu/-/issues/556
+ NOTE: Proposed patchset: https://lists.nongnu.org/archive/html/qemu-devel/2021-08/msg03692.html
CVE-2021-43400 (An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after- ...)
- bluez <unfixed> (bug #998626)
[stretch] - bluez <ignored> (invasive patch, requires post-stretch revamps)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93d08098a82e28889f27a5352e31deb4028a5315
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93d08098a82e28889f27a5352e31deb4028a5315
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211217/9e0b138d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list