FreeBSD Bugzilla – Attachment 160003 Details for
Bug 202402
emulators/qemu-devel emulators/qemu-sbruno: multiple vulnerabilities (CVE-2015-5154, CVE-2015-5166, CVE-2015-5165)
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
security/vuxml update for qemu
qemu_vuxml.diff (text/plain), 2.17 KB, created by
Jason Unovitch
on 2015-08-19 01:48:13 UTC
(
hide
)
Description:
security/vuxml update for qemu
Filename:
MIME Type:
Creator:
Jason Unovitch
Created:
2015-08-19 01:48:13 UTC
Size:
2.17 KB
patch
obsolete
>Index: vuln.xml >=================================================================== >--- vuln.xml (revision 394666) >+++ vuln.xml (working copy) >@@ -292,6 +292,17 @@ > <topic>xen-tools -- QEMU leak of uninitialized heap memory in rtl8139 device model</topic> > <affects> > <package> >+ <name>qemu</name> >+ <name>qemu-devel</name> >+ <range><le>0.11.1_20</le></range> >+ <range><ge>0.12</ge><le>2.3.0_2</le></range> >+ </package> >+ <package> >+ <name>qemu-sbruno</name> >+ <name>qemu-user-static</name> >+ <range><lt>2.4.50.g20150814</lt></range> >+ </package> >+ <package> > <name>xen-tools</name> > <range><lt>4.5.1</lt></range> > </package> >@@ -319,6 +330,7 @@ > <dates> > <discovery>2015-08-03</discovery> > <entry>2015-08-17</entry> >+ <modified>2015-08-19</modified> > </dates> > </vuln> > >@@ -326,6 +338,17 @@ > <topic>xen-tools -- use after free in QEMU/Xen block unplug protocol</topic> > <affects> > <package> >+ <name>qemu</name> >+ <name>qemu-devel</name> >+ <range><le>0.11.1_20</le></range> >+ <range><ge>0.12</ge><le>2.3.0_2</le></range> >+ </package> >+ <package> >+ <name>qemu-sbruno</name> >+ <name>qemu-user-static</name> >+ <range><lt>2.4.50.g20150814</lt></range> >+ </package> >+ <package> > <name>xen-tools</name> > <range><lt>4.5.1</lt></range> > </package> >@@ -350,6 +373,7 @@ > <dates> > <discovery>2015-08-03</discovery> > <entry>2015-08-17</entry> >+ <modified>2015-08-19</modified> > </dates> > </vuln> > >@@ -1227,6 +1251,17 @@ > <topic>xen-tools -- QEMU heap overflow flaw with certain ATAPI commands</topic> > <affects> > <package> >+ <name>qemu</name> >+ <name>qemu-devel</name> >+ <range><le>0.11.1_20</le></range> >+ <range><ge>0.12</ge><le>2.3.0_2</le></range> >+ </package> >+ <package> >+ <name>qemu-sbruno</name> >+ <name>qemu-user-static</name> >+ <range><lt>2.4.50.g20150814</lt></range> >+ </package> >+ <package> > <name>xen-tools</name> > <range><lt>4.5.0_9</lt></range> > </package> >@@ -1252,6 +1287,7 @@ > <dates> > <discovery>2015-07-27</discovery> > <entry>2015-08-04</entry> >+ <modified>2015-08-19</modified> > </dates> > </vuln> >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=160003">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 202402
:
160003
|
160004
|
160724
|
160725