diff options
author | Moritz Mühlenhoff <jmm@debian.org> | 2022-05-09 22:44:41 +0200 |
---|---|---|
committer | Moritz Mühlenhoff <jmm@debian.org> | 2022-05-09 22:52:09 +0200 |
commit | cee0f0a1ee6199609350c4dcc08652df86e402f7 (patch) | |
tree | 8c6d749cc4170be38bc73bfaf914f171bca7e2ba /data | |
parent | a94283db19e529ec36a36df68ee2480ec52ea1bb (diff) |
qemu DSA
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 2 | ||||
-rw-r--r-- | data/DSA/list | 3 | ||||
-rw-r--r-- | data/dsa-needed.txt | 3 |
3 files changed, 3 insertions, 5 deletions
diff --git a/data/CVE/list b/data/CVE/list index 194c9ce231..2c9e0f90b3 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -11585,14 +11585,12 @@ CVE-2022-26355 (Citrix Federated Authentication Service (FAS) 7.17 - 10.6 causes CVE-2022-26354 (A flaw was found in the vhost-vsock device of QEMU. In case of error, ...) {DLA-2970-1} - qemu 1:7.0+dfsg-1 - [bullseye] - qemu <no-dsa> (Minor issue) [buster] - qemu <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2063257 NOTE: https://gitlab.com/qemu-project/qemu/-/commit/8d1b247f3748ac4078524130c6d7ae42b6140aaf NOTE: vulnerable code in buster in vhost_vsock_send_transport_reset CVE-2022-26353 (A flaw was found in the virtio-net device of QEMU. This flaw was inadv ...) - qemu 1:7.0+dfsg-1 - [bullseye] - qemu <no-dsa> (Minor issue) [buster] - qemu <not-affected> (Original upstream fix for CVE-2021-3748 not applied) [stretch] - qemu <not-affected> (Original upstream fix for CVE-2021-3748 not applied) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2063197 diff --git a/data/DSA/list b/data/DSA/list index f0f14b8240..5eb1048b0c 100644 --- a/data/DSA/list +++ b/data/DSA/list @@ -1,3 +1,6 @@ +[09 May 2022] DSA-5133-1 qemu - security update + {CVE-2022-26353 CVE-2022-26354 CVE-2021-4206 CVE-2021-4207 CVE-2022-0358} + [bullseye] - qemu 1:5.2+dfsg-11+deb11u2 [08 May 2022] DSA-5132-1 ecdsautils - security update {CVE-2022-24884} [buster] - ecdsautils 0.3.2+git20151018-2+deb10u1 diff --git a/data/dsa-needed.txt b/data/dsa-needed.txt index a043c71201..bc80b98f32 100644 --- a/data/dsa-needed.txt +++ b/data/dsa-needed.txt @@ -35,9 +35,6 @@ nodejs (jmm) -- puma -- -qemu/stable (jmm) - Maintainer is proposing update for some CVEs, need review --- rpki-client/stable new 7.6 release required libretls, which isn't in Bullseye -- |