[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2022-4144/qemu: buster postponed

Sylvain Beucler (@beuc) beuc at debian.org
Tue Mar 14 14:04:08 GMT 2023 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c6ea268e by Sylvain Beucler at 2023-03-14T15:00:46+01:00
CVE-2022-4144/qemu: buster postponed

- - - - -
e04cdcf3 by Sylvain Beucler at 2023-03-14T15:04:26+01:00
CVE-2023-0330/qemu: buster postponed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13012,6 +13012,7 @@ CVE-2023-0330 (A vulnerability in the lsi53c895a device affects the latest versi
 	- qemu <unfixed> (bug #1029155)
 	[bookworm] - qemu <no-dsa> (Minor issue)
 	[bullseye] - qemu <no-dsa> (Minor issue)
+	[buster] - qemu <postponed> (Minor issue, waiting for sanctioned patch)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2160151
 	NOTE: Proposed patch: https://lists.nongnu.org/archive/html/qemu-devel/2023-01/msg03411.html
 	NOTE: No sanctioned upstream patch as of 2023-03-09
@@ -25613,6 +25614,7 @@ CVE-2022-45898
 CVE-2022-4144 (An out-of-bounds read flaw was found in the QXL display device emulati ...)
 	- qemu 1:7.2+dfsg-1
 	[bullseye] - qemu <no-dsa> (Minor issue)
+	[buster] - qemu <postponed> (Minor issue, DoS)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2148506
 	NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2022-11/msg04143.html
 	NOTE: https://gitlab.com/qemu-project/qemu/-/issues/1336



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/629d2aaf9e97ee59315bade07c0666111312bdd6...e04cdcf309558f3fb3b64ca621ea9b34f41351ab

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/629d2aaf9e97ee59315bade07c0666111312bdd6...e04cdcf309558f3fb3b64ca621ea9b34f41351ab
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230314/892397e7/attachment.htm>

More information about the debian-security-tracker-commits mailing list