[Git][security-tracker-team/security-tracker][master] CVE-2019-20175/qemu was fixed in 5.0
Adrian Bunk (@bunk)
bunk at debian.org
Sun Mar 3 20:15:45 GMT 2024
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ab5d4411 by Adrian Bunk at 2024-03-03T22:15:05+02:00
CVE-2019-20175/qemu was fixed in 5.0
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -299517,7 +299517,7 @@ CVE-2019-20176 (In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in
[jessie] - pure-ftpd <no-dsa> (Minor issue)
NOTE: https://github.com/jedisct1/pure-ftpd/commit/aea56f4bcb9948d456f3fae4d044fd3fa2e19706
CVE-2019-20175 (An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 ...)
- - qemu <unfixed> (unimportant)
+ - qemu 1:5.0-1 (unimportant)
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg01651.html
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg03869.html
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg00597.html
@@ -299525,6 +299525,7 @@ CVE-2019-20175 (An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU
NOTE: Marked unimportant, as negligible security impact (a privileged guest
NOTE: can trigger similar issues without triggering the specific assert) and
NOTE: is disputed by QEMU security team.
+ NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/ed78352a59ea7acf7520d4d47a96b9911bae7fc3 (v5.0.0-rc0)
CVE-2019-20174 (Auth0 Lock before 11.21.0 allows XSS when additionalSignUpFields is us ...)
NOT-FOR-US: Auth0 Lock
CVE-2019-20173 (The Auth0 wp-auth0 plugin 3.11.x before 3.11.3 for WordPress allows XS ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab5d4411459bc860516d625beb0e8f33f3e7e037
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab5d4411459bc860516d625beb0e8f33f3e7e037
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240303/e8962f33/attachment.htm>
More information about the debian-security-tracker-commits
mailing list