Summary: | <app-emulation/qemu-2.4.1-r2: two vulnerabilities (CVE-2015-{5278,5279}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | qemu+disabled |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B3 [glsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2015-09-15 13:27:23 UTC
upstream commits: CVE-2015-5278: http://git.qemu.org/?p=qemu.git;a=commitdiff;h=737d2b3c41d59eb8f94ab7eb419b957938f24943 CVE-2015-5279: http://git.qemu.org/?p=qemu.git;a=commitdiff;h=9bbdbc66e5765068dce76e9269dce4547afd8ad4 qemu-2.4.0.1 in the tree should have the fixes for this and should be fine to mark stable http://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4703b062bb7d0c6ebdf91827a3396435e6dea74a stabilized in another bug. cleanup done by vapier Arches and Maintainer(s), Thank you for your work. Added to an existing GLSA Request. This issue was resolved and addressed in GLSA 201602-01 at https://security.gentoo.org/glsa/201602-01 by GLSA coordinator Kristian Fiskerstrand (K_F). |