[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-12464/qemu
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 16 16:22:02 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
889788ae by Salvatore Bonaccorso at 2025-12-16T17:21:32+01:00
Update status for CVE-2025-12464/qemu
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14139,13 +14139,17 @@ CVE-2025-11174 (The Document Library Lite plugin for WordPress is vulnerable to
CVE-2025-10487 (The Advanced Ads \u2013Ad Manager & AdSense plugin for WordPress is vu ...)
NOT-FOR-US: WordPress plugin
CVE-2025-12464 (A stack-based buffer overflow was found in the QEMU e1000 network devi ...)
- - qemu <unfixed> (bug #1119917)
+ - qemu 1:10.1.3+ds-1 (bug #1119917)
[trixie] - qemu <no-dsa> (Minor issue)
[bookworm] - qemu <not-affected> (Vulnerable code introduced later)
[bullseye] - qemu <not-affected> (Vulnerable code introduced later)
NOTE: https://gitlab.com/qemu-project/qemu/-/issues/3043
NOTE: https://lore.kernel.org/qemu-devel/20251028160042.3321933-1-peter.maydell@linaro.org/T/#u
NOTE: Introduced with: https://gitlab.com/qemu-project/qemu/-/commit/140eae9c8f760e9260356fe9b56b802a02f0a9d2 (v8.1.0-rc0)
+ NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/a01344d9d78089e9e585faaeb19afccff2050abf (v10.2.0-rc1)
+ NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/467397ea3051dcdf40fc5b3f6005ed5538937b01 (v10.1.3)
+ NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/134f0c58547bc680732a9fc7556329134ef81dee (v10.0.7)
+ NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/516bab6fdfadb2e800aa2a88ad30d20e90b0258d (v7.2.22)
CVE-2025-8849 (LibreChat version 0.7.9 is vulnerable to a Denial of Service (DoS) att ...)
NOT-FOR-US: LibreChat
CVE-2025-8489 (The King Addons for Elementor \u2013 Free Elements, Widgets, Templates ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/889788aeec01a152b0c91cb3b3aecda976d810a5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/889788aeec01a152b0c91cb3b3aecda976d810a5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251216/16ae08f1/attachment.htm>
More information about the debian-security-tracker-commits
mailing list