[Git][security-tracker-team/security-tracker][master] bug nums
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Jul 2 09:45:37 BST 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
87783aec by Moritz Mühlenhoff at 2021-07-02T10:45:14+02:00
bug nums
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2353,7 +2353,7 @@ CVE-2021-XXXX [memory leak when authenticated client connects with MQTT v5 sent
NOTE: https://mosquitto.org/blog/2021/06/version-2-0-11-released/
CVE-2021-3611 [QEMU: intel-hda: segmentation fault due to stack overflow]
RESERVED
- - qemu <unfixed>
+ - qemu <unfixed> (bug #990562)
[buster] - qemu <not-affected> (Vulnerable code introduced later)
[stretch] - qemu <not-affected> (Vulnerable code introduced later)
NOTE: https://bugs.launchpad.net/qemu/+bug/1907497
@@ -2825,12 +2825,12 @@ CVE-2021-34827
RESERVED
CVE-2021-3608 [pvrdma: uninitialized memory unmap in pvrdma_ring_init()]
RESERVED
- - qemu <unfixed>
+ - qemu <unfixed> (bug #990563)
[stretch] - qemu <not-affected> (Vulnerable code introduced later)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1973383
CVE-2021-3607 [pvrdma: unchecked malloc size due to integer overflow in init_dev_ring()]
RESERVED
- - qemu <unfixed>
+ - qemu <unfixed> (bug #990564)
[stretch] - qemu <not-affected> (Vulnerable code introduced later)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1973349
CVE-2021-3606
@@ -4862,7 +4862,7 @@ CVE-2021-3587 [nfc: fix NULL ptr dereference in llcp_sock_getname() after failed
NOTE: https://git.kernel.org/linus/4ac06a1e013cf5fdd963317ffd3b968560f33bba
CVE-2021-3582 [hw/rdma: Fix possible mremap overflow in the pvrdma device]
RESERVED
- - qemu <unfixed>
+ - qemu <unfixed> (bug #990565)
[stretch] - qemu <not-affected> (Vulnerable code introduced later)
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2021-06/msg04148.html
CVE-2021-33907
@@ -31145,7 +31145,7 @@ CVE-2021-22919
RESERVED
CVE-2021-22918
RESERVED
- - libuv1 <unfixed>
+ - libuv1 <unfixed> (bug #990561)
NOTE: https://nodejs.org/en/blog/vulnerability/july-2021-security-releases/
NOTE: https://github.com/nodejs/node/commit/d33aead28bcec32a2a450f884907a6d971631829
CVE-2021-22917
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/87783aec2bcba0475953e40d4ee5bf9a38a7d960
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/87783aec2bcba0475953e40d4ee5bf9a38a7d960
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210702/37b31bb9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list