Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 790f8572 by Salvatore Bonaccorso at 2023-08-05T07:57:26+02:00 Add CVE-2023-4135/qemu - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -5,7 +5,14 @@ CVE-2023-4158 (Cross-site Scripting (XSS) - Stored in GitHub repository omeka/om CVE-2023-4157 (Improper Input Validation in GitHub repository omeka/omeka-s prior to ...) NOT-FOR-US: omeka-s CVE-2023-4135 (A heap out-of-bounds memory read flaw was found in the virtual nvme de ...) - TODO: check + - qemu <unfixed> + [bookworm] - qemu <not-affected> (Vulnerable code not present) + [bullseye] - qemu <not-affected> (Vulnerable code not present) + [buster] - qemu <not-affected> (Vulnerable code not present) + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2229101 + NOTE: https://www.zerodayinitiative.com/advisories/ZDI-CAN-21521 + NOTE: Introduced by: https://gitlab.com/qemu-project/qemu/-/commit/73064edfb864743cde2c08f319609344af02aeb3 (v8.0.0-rc0) + NOTE: Proposed patch: https://lists.nongnu.org/archive/html/qemu-devel/2023-08/msg00516.html CVE-2023-39552 (PHPGurukul Online Security Guards Hiring System v.1.0 is vulnerable to ...) NOT-FOR-US: PHPGurukul Online Security Guards Hiring System CVE-2023-39551 (PHPGurukul Online Security Guards Hiring System v.1.0 is vulnerable to ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/790f8572ca836bd6545c16c40dda7f9c0db07d1f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/790f8572ca836bd6545c16c40dda7f9c0db07d1f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits