[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-0665/qemu via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jan 14 16:09:26 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e1411952 by Salvatore Bonaccorso at 2026-01-14T17:08:31+01:00
Track fixed version for CVE-2026-0665/qemu via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1347,7 +1347,7 @@ CVE-2026-22695 (LIBPNG is a reference library for use in applications that read,
NOTE: Introducing fix for CVE-2025-65018 got backported into older suites
NOTE: https://github.com/pnggroup/libpng/issues/778
CVE-2026-0665 [qemu: Heap off-by-one in KVM Xen PHYSDEVOP_map_pirq]
- - qemu <unfixed> (bug #1125423)
+ - qemu 1:10.2.0+ds-2 (bug #1125423)
[bookworm] - qemu <not-affected> (Vulnerable code introduced later)
[bullseye] - qemu <not-affected> (Vulnerable code introduced later)
NOTE: https://lore.kernel.org/qemu-devel/13FE03BE60EA78D6+20260109023548.4047-1-vr@darknavy.com/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e14119527f5f08966baa6f34a73497c5c4ae1cd7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e14119527f5f08966baa6f34a73497c5c4ae1cd7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260114/f06f151b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list