[Git][security-tracker-team/security-tracker][master] Add CVE-2024-2447{4,5}/qemu

Tue Feb 20 21:29:34 GMT 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2fefe4e8 by Salvatore Bonaccorso at 2024-02-20T22:28:55+01:00
Add CVE-2024-2447{4,5}/qemu

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -55,9 +55,12 @@ CVE-2024-24793 (A use-after-free vulnerability exists in the DICOM Element Parsi
 CVE-2024-24763 (JumpServer is an open source bastion host and an operation and mainten ...)
 	NOT-FOR-US: JumpServer
 CVE-2024-24475 (An issue in Qemu before v.8.2.0 allows a remote attacker to execute ar ...)
-	TODO: check
+	- qemu 1:8.2.0+ds-1
+	NOTE: https://github.com/qemu/qemu/commit/9d9c06b144da340b9a937ed01d45a936810715be (v8.2.0-rc0)
 CVE-2024-24474 (Buffer Overflow vulnerability in Qemu before v.8.2.0 allows a remote a ...)
-	TODO: check
+	- qemu 1:8.2.0+ds-1
+	NOTE: https://gitlab.com/qemu-project/qemu/-/issues/1810
+	NOTE: https://github.com/qemu/qemu/commit/77668e4b9bca03a856c27ba899a2513ddf52bb52 (v8.2.0-rc0)
 CVE-2024-23809 (A double-free vulnerability exists in the BrainVision ASCII Header Par ...)
 	TODO: check
 CVE-2024-23606 (An out-of-bounds write vulnerability exists in the sopen_FAMOS_read fu ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fefe4e8185da1c6d2f2cf20cbb784b884aad895

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fefe4e8185da1c6d2f2cf20cbb784b884aad895
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240220/d58b9ce6/attachment.htm>
