[Git][security-tracker-team/security-tracker][master] Update commit reference information for some qemu issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f3ec7a6b by Salvatore Bonaccorso at 2026-03-19T22:26:47+01:00
Update commit reference information for some qemu issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11889,6 +11889,7 @@ CVE-2026-2243 (A flaw was found in QEMU. A specially crafted VMDK image could tr
 	[bookworm] - qemu <no-dsa> (Minor issue)
 	[bullseye] - qemu <postponed> (Minor issue)
 	NOTE: https://lore.kernel.org/qemu-devel/CAJ9qJssSwxkmEVethg57-Ph6maEfButSaV-r07ma9_x1sp6wYg@mail.gmail.com/
+	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/86b5130fefbe476f3c0a85b9e136f9e3fd518689 (v10.2.2)
 CVE-2026-2232 (The Product Table and List Builder for WooCommerce Lite plugin for Wor ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-27475 (SPIP before 4.4.9 allows Insecure Deserialization in the public area t ...)
@@ -194311,7 +194312,8 @@ CVE-2026-3196
 	[trixie] - qemu <no-dsa> (Minor issue)
 	[bookworm] - qemu <no-dsa> (Minor issue)
 	NOTE: https://lore.kernel.org/qemu-devel/20260220-virtio-snd-series-v1-0-207c4f7200a2@linaro.org/
-	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/61679d7dcfa2dffc8fb115aa19b09e0e7cf5ea5c
+	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/61679d7dcfa2dffc8fb115aa19b09e0e7cf5ea5c (v11.0.0-rc0)
+	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/6d84fbf241d0322f19adfbe466c60bed5f50de262 (v10.2.2)
 CVE-2026-3195
 	- qemu 1:10.2.2+ds-1 (bug #1129604)
 	[trixie] - qemu <no-dsa> (Minor issue)
@@ -194319,8 +194321,10 @@ CVE-2026-3195
 	[bullseye] - qemu <not-affected> (Incomplete fix for CVE-2024-7730 not applied)
 	NOTE: CVE exists for an incomplete fix for CVE-2024-7730
 	NOTE: https://lore.kernel.org/qemu-devel/20260220-virtio-snd-series-v1-0-207c4f7200a2@linaro.org/
-	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/bcb53328aa70023f1405fade4e253e7f77567261
-	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/7994203bb1b83a6604f3ab00fe9598909bb66164
+	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/bcb53328aa70023f1405fade4e253e7f77567261 (11.0.0-rc0)
+	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/7994203bb1b83a6604f3ab00fe9598909bb66164 (v11.0.0-rc0)
+	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/a730f98a7a199706c44dd86a39d961e80e2ad18f (v10.2.2)
+	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/298986525140149bd749c236c17cfbb507c69e23 (v10.2.2)
 CVE-2024-7730 (A heap buffer overflow was found in the virtio-snd device in QEMU. Whe ...)
 	- qemu 1:9.1.0+ds-1
 	[bookworm] - qemu <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3ec7a6b9b7f48f536a5af9d418674590e68646f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3ec7a6b9b7f48f536a5af9d418674590e68646f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260319/9415c76a/attachment.htm>