summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMoritz Muehlenhoff <jmm@debian.org>2020-09-18 11:16:18 +0200
committerMoritz Muehlenhoff <jmm@debian.org>2020-09-18 11:16:18 +0200
commit8a2d34aecf2c2da699e02d6941613cde5b894924 (patch)
treefa7800420d37b2c8fb7f176d4a7179c7109179a4
parent18a85607987f98e6319f96a8786d0e179480aacd (diff)
qemu bugs / postponed
-rw-r--r--data/CVE/list.202016
1 files changed, 12 insertions, 4 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020
index 0f8e9036d6..0884c2d047 100644
--- a/data/CVE/list.2020
+++ b/data/CVE/list.2020
@@ -279,11 +279,14 @@ CVE-2020-25626
RESERVED
CVE-2020-25625 [usb: hcd-ohci: infinite loop issue while processing transfer descriptors]
RESERVED
- - qemu <unfixed>
+ - qemu <unfixed> (bug #970542)
+ [buster] - qemu <postponed> (Can be fixed along in next qemu DSA)
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-09/msg05905.html
+ NOTE: https://www.openwall.com/lists/oss-security/2020/09/17/1
CVE-2020-25624 [hcd-ohci: out-of-bound access issue while processing transfer descriptors]
RESERVED
- - qemu <unfixed>
+ - qemu <unfixed> (bug #970541)
+ [buster] - qemu <postponed> (Can be fixed along in next qemu DSA)
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-09/msg05492.html
CVE-2020-25623
RESERVED
@@ -1399,14 +1402,19 @@ CVE-2020-25086 (Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in
NOT-FOR-US: Ecommerce-CodeIgniter-Bootstrap
CVE-2020-25085 [sdhci: out-of-bounds access issue while doing multi block SDMA]
RESERVED
- - qemu <unfixed>
+ - qemu <unfixed> (bug #970540)
+ [buster] - qemu <postponed> (Can be fixed along in next qemu DSA)
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-09/msg00733.html
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-09/msg01439.html
+ NOTE: https://www.openwall.com/lists/oss-security/2020/09/16/6
CVE-2020-25084 [usb: use-after-free issue while setting up packet]
RESERVED
- - qemu <unfixed>
+ - qemu <unfixed> (bug #970539)
+ [buster] - qemu <postponed> (Can be fixed along in next qemu DSA)
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-08/msg08050.html
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-08/msg08043.html
+ NOTE: https://www.openwall.com/lists/oss-security/2020/09/16/5
+ NOTE: https://ruhr-uni-bochum.sciebo.de/s/NNWP2GfwzYKeKwE?path=%2Fxhci_uaf_2
CVE-2020-25083
RESERVED
CVE-2020-25082

© 2014-2024 Faster IT GmbH | imprint | privacy policy