Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d4603c18 by Moritz Muehlenhoff at 2018-12-21T16:02:58Z
two qemu issues fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5524,7 +5524,7 @@ CVE-2018-19667
CVE-2018-19666 (The agent in OSSEC through 3.1.0 on Windows allows local users
to gain ...)
- ossec-hids <itp> (bug #361954)
CVE-2018-19665 (The Bluetooth subsystem in QEMU mishandles negative values for
length ...)
- - qemu <unfixed> (bug #916278)
+ - qemu 1:3.1+dfsg-2 (bug #916278)
- qemu-kvm <removed>
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg03570.html
CVE-2018-19664 (libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the
...)
@@ -15522,7 +15522,7 @@ CVE-2018-16873 (In Go before 1.10.6 and 1.11.x before
1.11.3, the "go get&q
NOTE:
https://github.com/golang/go/commit/7ef6ee2c5727f0d11206b4d1866c18e6ab4785be
(1.10.6)
TODO: check other versions
CVE-2018-16872 (A flaw was found in qemu Media Transfer Protocol (MTP). The
code ...)
- - qemu <unfixed> (bug #916397)
+ - qemu 1:3.1+dfsg-2 (bug #916397)
- qemu-kvm <removed>
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg03135.html
CVE-2018-16871
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d4603c18a3026bb142d0b5a2219deafb9ae0ea70
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d4603c18a3026bb142d0b5a2219deafb9ae0ea70
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
