[Git][security-tracker-team/security-tracker][master] Add upstream reference for CVE-2021-3638/qemu
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Sep 6 18:32:13 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cf2c7c25 by Salvatore Bonaccorso at 2021-09-06T19:31:38+02:00
Add upstream reference for CVE-2021-3638/qemu
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9678,6 +9678,7 @@ CVE-2021-3638 [ati-vga: inconsistent check in ati_2d_blt() may lead to out-of-bo
[buster] - qemu <not-affected> (Vulnerable code introduced in ATI VGA device emulation added later)
[stretch] - qemu <not-affected> (Vulnerable code introduced in ATI VGA device emulation added later)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1979858
+ NOTE: https://lore.kernel.org/qemu-devel/CAA8xKjXkDwPYxSAeRb+2mfHRrbiL_kh9unVkemFXLfF68UXePA@mail.gmail.com
CVE-2021-36235 (An issue was discovered in Ivanti Workspace Control before 10.6.30.0. ...)
NOT-FOR-US: Ivanti
CVE-2021-36234 (Use of a hard-coded cryptographic key in MIK.starlight 7.9.5.24363 all ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf2c7c25e0ecf97e6eba4f8c2b4c3042bda69034
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf2c7c25e0ecf97e6eba4f8c2b4c3042bda69034
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210906/ff61981f/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list