Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3901c508 by Salvatore Bonaccorso at 2022-02-22T22:21:35+01:00
Add Debian bug reference for CVE-2021-45464/kvmtool
kvmtool actually might be removed from unstable as it has been
unmaintained now for a while and not included neither in buster nor in
bullseye.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12878,7 +12878,7 @@ CVE-2021-4159 [bpf: Verifer, adjust_scalar_min_max_vals
to always call update_re
NOTE: Fixed by:
https://git.kernel.org/linus/294f2fc6da27620a506e6c050241655459ccd6bd (5.7-rc1)
CVE-2021-45464 [hypervisor escape and host code execution]
RESERVED
- - kvmtool <unfixed>
+ - kvmtool <unfixed> (bug #1006290)
NOTE: https://www.kalmarunionen.dk/writeups/2021/hxp-2021/lkvm/
CVE-2021-45463 (load_cache in GEGL before 0.4.34 allows shell expansion when a
pathnam ...)
- gegl 1:0.4.34-1 (bug #1002661)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3901c508f40a7d206c32b06d54628fd70baf0496
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3901c508f40a7d206c32b06d54628fd70baf0496
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
