[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-45464/kvmtool
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Feb 22 21:22:40 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3901c508 by Salvatore Bonaccorso at 2022-02-22T22:21:35+01:00
Add Debian bug reference for CVE-2021-45464/kvmtool
kvmtool actually might be removed from unstable as it has been
unmaintained now for a while and not included neither in buster nor in
bullseye.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12878,7 +12878,7 @@ CVE-2021-4159 [bpf: Verifer, adjust_scalar_min_max_vals to always call update_re
NOTE: Fixed by: https://git.kernel.org/linus/294f2fc6da27620a506e6c050241655459ccd6bd (5.7-rc1)
CVE-2021-45464 [hypervisor escape and host code execution]
RESERVED
- - kvmtool <unfixed>
+ - kvmtool <unfixed> (bug #1006290)
NOTE: https://www.kalmarunionen.dk/writeups/2021/hxp-2021/lkvm/
CVE-2021-45463 (load_cache in GEGL before 0.4.34 allows shell expansion when a pathnam ...)
- gegl 1:0.4.34-1 (bug #1002661)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3901c508f40a7d206c32b06d54628fd70baf0496
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3901c508f40a7d206c32b06d54628fd70baf0496
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220222/fabaf264/attachment.htm>
More information about the debian-security-tracker-commits
mailing list