[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage qemu for bullseye LTS (CVE-2024-3446, CVE-2024-4467 & CVE-2024-7409)

Thu May 1 22:52:37 BST 2025


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b6b09fa4 by Chris Lamb at 2025-05-01T14:52:24-07:00
data/dla-needed.txt: Triage qemu for bullseye LTS (CVE-2024-3446, CVE-2024-4467 & CVE-2024-7409)

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -304,6 +304,10 @@ pytorch
   NOTE: 20250422: Added by Front-Desk (rouca)
   NOTE: 20250422: CVE-2025-32434 RCE need to be fixed. DoS may be postponed (rouca/FD)
 --
+qemu
+  NOTE: 20250501: Added by Front-Desk (lamby)
+  NOTE: 20250501: CVE-2024-3446, CVE-2024-4467 & CVE-2024-7409 have been addressed in bookworm. The patches do not seem invasive, but expertise likely required to determine whether they are worth releasing or marking as <ignored>. (lamby)
+--
 rails
   NOTE: 20250105: Added by Front-Desk (apo)
   NOTE: 20250305: Utkarsh uploaded the CVE fixes to unstable via rails/7.2.2.1. (utkarsh)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b6b09fa4745b01c1c523b145a03e741801e64efa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b6b09fa4745b01c1c523b145a03e741801e64efa
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250501/a09cf0cc/attachment.htm>
