[Git][security-tracker-team/security-tracker][master] 2 commits: claim a stab at qemu

Mon, 16 Apr 2018 16:46:22 -0700 

Antoine Beaupré pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
037eeef8 by Antoine Beaupré at 2018-04-16T19:44:34-04:00
claim a stab at qemu

- - - - -
773a11c5 by Antoine Beaupré at 2018-04-16T19:45:39-04:00
better path to patch upstream in CVE-2018-7550

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -6294,7 +6294,7 @@ CVE-2018-7551 (There is an invalid free in 
MiniPS::delete0 in minips.cpp that le
 CVE-2018-7550 (The load_multiboot function in hw/i386/multiboot.c in Quick 
Emulator ...)
        - qemu 1:2.12~rc3+dfsg-1 (bug #892041)
        - qemu-kvm <removed>
-       NOTE: 
https://lists.nongnu.org/archive/html/qemu-devel/2018-03/msg01885.html
+       NOTE: 
https://git.qemu.org/?p=qemu.git;a=patch;h=2a8fcd119eb7c6bb3837fc3669eb1b2dfb31daf8
 CVE-2018-7549 (In params.c in zsh through 5.4.2, there is a crash during a 
copy of an ...)
        - zsh <unfixed> (unimportant)
        NOTE: 
https://sourceforge.net/p/zsh/code/ci/c2cc8b0fbefc9868fa83537f5b6d90fc1ec438dd


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -63,9 +63,9 @@ ming (Hugo Lefeuvre)
 --
 opencv
 --
-qemu
+qemu (Antoine Beaupre)
 --
-qemu-kvm
+qemu-kvm (Antoine Beaupre)
 --
 ruby1.9.1 (Santiago R.R.)
   NOTE: 20180402: Also vulnerable to CVE-2018-1000074. (lamby)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/compare/fdaf72f958e84ce133657538979f6ed6583e2f99...773a11c526671d7ffee7a41b18bc01a6f37d8d63

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/compare/fdaf72f958e84ce133657538979f6ed6583e2f99...773a11c526671d7ffee7a41b18bc01a6f37d8d63
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to