[Git][security-tracker-team/security-tracker][master] Reserve DLA-4296-1 for qemu

Santiago R.R. (@santiago) santiago at debian.org
Tue Sep 9 02:30:09 BST 2025 


Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker


Commits:
77d97a70 by Santiago Ruano Rincón at 2025-09-08T22:29:55-03:00
Reserve DLA-4296-1 for qemu

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -119847,7 +119847,6 @@ CVE-2024-6331 (stitionai/devika main branch as of commit cdfb782b0e634b773b10963
 CVE-2024-7409 (A flaw was found in the QEMU NBD Server. This vulnerability allows a d ...)
 	- qemu 1:9.0.2+ds-3
 	[bookworm] - qemu 1:7.2+dfsg-7+deb12u8
-	[bullseye] - qemu <postponed> (Minor issue; can be fixed in a following update)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2302487
 	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/c8a76dbd90c2f48df89b75bef74917f90a59b623 (v9.1.0-rc2)
 	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/b9b72cb3ce15b693148bd09cef7e50110566d8a0 (v9.1.0-rc2)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[08 Sep 2025] DLA-4296-1 qemu - security update
+	{CVE-2024-7409}
+	[bullseye] - qemu 1:5.2+dfsg-11+deb11u5
 [08 Sep 2025] DLA-4168-2 openafs - regression update
 	[bullseye] - openafs 1.8.6-5+deb11u2
 [08 Sep 2025] DLA-4295-1 libhtp - security update


=====================================
data/dla-needed.txt
=====================================
@@ -368,9 +368,6 @@ pytorch (dleidert)
   NOTE: 20250422: Added by Front-Desk (rouca)
   NOTE: 20250422: CVE-2025-32434 RCE need to be fixed. DoS may be postponed (rouca/FD)
 --
-qemu
-  NOTE: 20250821: Added by coordinator (santiago)
---
 qtbase-opensource-src
   NOTE: 20250520: Added by Front-Desk (Beuc)
   NOTE: 20250520: Follow fixes from bookworm 12.11 (CVE-2024-39936)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/77d97a70bc8010698daca8977af8f884c5a056a0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/77d97a70bc8010698daca8977af8f884c5a056a0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250909/0883d1d6/attachment.htm>

More information about the debian-security-tracker-commits mailing list