qemu DSA

3 files changed, 3 insertions, 5 deletions

diff --git a/data/CVE/list b/data/CVE/list
index 194c9ce231..2c9e0f90b3 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -11585,14 +11585,12 @@ CVE-2022-26355 (Citrix Federated Authentication Service (FAS) 7.17 - 10.6 causes
 CVE-2022-26354 (A flaw was found in the vhost-vsock device of QEMU. In case of error,  ...)
 	{DLA-2970-1}
 	- qemu 1:7.0+dfsg-1
-	[bullseye] - qemu <no-dsa> (Minor issue)
 	[buster] - qemu <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2063257
 	NOTE: https://gitlab.com/qemu-project/qemu/-/commit/8d1b247f3748ac4078524130c6d7ae42b6140aaf
 	NOTE: vulnerable code in buster in vhost_vsock_send_transport_reset
 CVE-2022-26353 (A flaw was found in the virtio-net device of QEMU. This flaw was inadv ...)
 	- qemu 1:7.0+dfsg-1
-	[bullseye] - qemu <no-dsa> (Minor issue)
 	[buster] - qemu <not-affected> (Original upstream fix for CVE-2021-3748 not applied)
 	[stretch] - qemu <not-affected> (Original upstream fix for CVE-2021-3748 not applied)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2063197
diff --git a/data/DSA/list b/data/DSA/list
index f0f14b8240..5eb1048b0c 100644
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -1,3 +1,6 @@
+[09 May 2022] DSA-5133-1 qemu - security update
+	{CVE-2022-26353 CVE-2022-26354 CVE-2021-4206 CVE-2021-4207 CVE-2022-0358}
+	[bullseye] - qemu 1:5.2+dfsg-11+deb11u2
 [08 May 2022] DSA-5132-1 ecdsautils - security update
 	{CVE-2022-24884}
 	[buster] - ecdsautils 0.3.2+git20151018-2+deb10u1
diff --git a/data/dsa-needed.txt b/data/dsa-needed.txt
index a043c71201..bc80b98f32 100644
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -35,9 +35,6 @@ nodejs (jmm)
 --
 puma
 --
-qemu/stable (jmm)
-  Maintainer is proposing update for some CVEs, need review
---
 rpki-client/stable
   new 7.6 release required libretls, which isn't in Bullseye
 --