Author: carnil Date: 2017-04-25 07:00:43 +0000 (Tue, 25 Apr 2017) New Revision: 51021
Modified: data/CVE/list Log: Add upstream tag/commit information for three qemu issues (unimportant, due virglrenderer related) Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-04-25 06:53:40 UTC (rev 51020) +++ data/CVE/list 2017-04-25 07:00:43 UTC (rev 51021) @@ -7501,7 +7501,7 @@ [jessie] - qemu <not-affected> (Vulnerable code introduced later) [wheezy] - qemu <not-affected> (Vulnerable code introduced later) - qemu-kvm <not-affected> (Vulnerable code introduced later) - NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=204f01b30975923c64006f8067f0937b91eea68b + NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=204f01b30975923c64006f8067f0937b91eea68b (v2.9.0-rc0) NOTE: Introduced after: http://git.qemu.org/?p=qemu.git;a=commit;h=62232bf48456bda4058ceae05851bc58c1032338 (v2.4.0) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1415795 NOTE: Marked as unimportant, since 1:2.8+dfsg-2 upload reverts @@ -7717,7 +7717,7 @@ - qemu-kvm <not-affected> (Vulnerable code not present) NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2017-01/msg00154.html NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1415281 - NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=33243031dad02d161225ba99d782616da133f689 + NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=33243031dad02d161225ba99d782616da133f689 (v2.9.0-rc0) NOTE: Marked as unimportant, since 1:2.8+dfsg-2 reverted the support for NOTE: virtio gpu (virglrenderer) and opengl, but the affected code is NOTE: still present. @@ -12288,7 +12288,7 @@ NOTE: Marked as unimportant, since 1:2.8+dfsg-2 reverted the support for NOTE: virtio gpu (virglrenderer) and opengl, but the affected code is NOTE: still present. - NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=abd7f08b2353f43274b785db8c7224f082ef4d31 + NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=abd7f08b2353f43274b785db8c7224f082ef4d31 (v2.9.0-rc0) CVE-2016-10029 (The virtio_gpu_set_scanout function in QEMU (aka Quick Emulator) built ...) - qemu 1:2.7+dfsg-1 [jessie] - qemu <not-affected> (Vulnerable code not present) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits