[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-8612

Fri Oct 25 06:43:36 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c0306c7b by Salvatore Bonaccorso at 2024-10-25T07:43:09+02:00
Update status for CVE-2024-8612

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8219,10 +8219,11 @@ CVE-2023-47480 (An issue in Pure Data 0.54-0 and fixed in 0.54-1 allows a local
 	NOTE: https://github.com/pure-data/pure-data/issues/2063
 	NOTE: https://github.com/pure-data/pure-data/commit/0b5e467b8728b3ed56e1a8ee5b367ce78e7e6e5d (0.54-1test1)
 CVE-2024-8612 (A flaw was found in QEMU, in the virtio-scsi, virtio-blk, and virtio-c ...)
-	- qemu 1:9.1.1+ds-1 (bug #1082406)
+	- qemu <unfixed> (bug #1082406)
 	[bookworm] - qemu <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2313760
-	NOTE: https://gitlab.com/qemu-project/qemu/-/commit/637b0aa139565cb82a7b9269e62214f87082635c
+	NOTE: Mitigation addressing symptomps (but not root issue): https://gitlab.com/qemu-project/qemu/-/commit/637b0aa139565cb82a7b9269e62214f87082635c
+	NOTE: qemu/1:9.1.1+ds-1 upload only addresses the symtoms but not the root cause of the issue.
 CVE-2024-45769 (A vulnerability was found in Performance Co-Pilot (PCP). This flaw all ...)
 	- pcp 6.3.1-1
 	[bookworm] - pcp <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c0306c7bb13c983aac643853f4f765be2688feeb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c0306c7bb13c983aac643853f4f765be2688feeb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241025/5df53357/attachment.htm>
