[Git][security-tracker-team/security-tracker][master] CVE-2019-20175/qemu was fixed in 5.0

Sun, 03 Mar 2024 12:16:22 -0800 


Adrian Bunk pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
ab5d4411 by Adrian Bunk at 2024-03-03T22:15:05+02:00
CVE-2019-20175/qemu was fixed in 5.0

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -299517,7 +299517,7 @@ CVE-2019-20176 (In Pure-FTPd 1.0.49, a stack 
exhaustion issue was discovered in
        [jessie] - pure-ftpd <no-dsa> (Minor issue)
        NOTE: 
https://github.com/jedisct1/pure-ftpd/commit/aea56f4bcb9948d456f3fae4d044fd3fa2e19706
 CVE-2019-20175 (An issue was discovered in ide_dma_cb() in hw/ide/core.c in 
QEMU 2.4.0 ...)
-       - qemu <unfixed> (unimportant)
+       - qemu 1:5.0-1 (unimportant)
        NOTE: 
https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg01651.html
        NOTE: 
https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg03869.html
        NOTE: 
https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg00597.html
@@ -299525,6 +299525,7 @@ CVE-2019-20175 (An issue was discovered in 
ide_dma_cb() in hw/ide/core.c in QEMU
        NOTE: Marked unimportant, as negligible security impact (a privileged 
guest
        NOTE: can trigger similar issues without triggering the specific 
assert) and
        NOTE: is disputed by QEMU security team.
+       NOTE: Fixed by: 
https://gitlab.com/qemu-project/qemu/-/commit/ed78352a59ea7acf7520d4d47a96b9911bae7fc3
 (v5.0.0-rc0)
 CVE-2019-20174 (Auth0 Lock before 11.21.0 allows XSS when 
additionalSignUpFields is us ...)
        NOT-FOR-US: Auth0 Lock
 CVE-2019-20173 (The Auth0 wp-auth0 plugin 3.11.x before 3.11.3 for WordPress 
allows XS ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab5d4411459bc860516d625beb0e8f33f3e7e037

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab5d4411459bc860516d625beb0e8f33f3e7e037
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to