diff options
| author | Thorsten Alteholz <debian@alteholz.de> | 2020-11-29 17:01:30 +0100 |
|---|---|---|
| committer | Thorsten Alteholz <debian@alteholz.de> | 2020-11-29 17:01:30 +0100 |
| commit | d410c008af3c766e95c46962ea2885323dceeb7c (patch) | |
| tree | 408494261d03c513c1aa7a1ff841552556273afc /data | |
| parent | f80f946be508e5938b45b977beb8469e76e74d43 (diff) | |
mark qemu CVEs as postponed
Diffstat (limited to 'data')
| -rw-r--r-- | data/CVE/list | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list index 8091e1bee2..073eaed320 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -539,11 +539,13 @@ CVE-2020-29131 CVE-2020-29130 (slirp.c in libslirp through 4.3.1 has a buffer over-read because it tr ...) - libslirp <unfixed> - qemu 1:4.1-2 + [stretch] - qemu <postponed> (Fix along in future DLA, when fixed upstream) NOTE: https://lists.freedesktop.org/archives/slirp/2020-November/000115.html NOTE: qemu 1:4.1-2 switched to system libslirp, marking that version as fixed. CVE-2020-29129 (ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tri ...) - libslirp <unfixed> - qemu 1:4.1-2 + [stretch] - qemu <postponed> (Fix along in future DLA, when fixed upstream) NOTE: https://lists.freedesktop.org/archives/slirp/2020-November/000115.html NOTE: qemu 1:4.1-2 switched to system libslirp, marking that version as fixed. CVE-2020-29128 (petl before 1.68, in some configurations, allows resolution of entitie ...) |