Summary: | <app-emulation/qemu-4.1.0: Possible ACL bypass (CVE-2019-13164) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | slyfox, tamiko, virtualization |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.openwall.com/lists/oss-security/2019/07/02/2 | ||
Whiteboard: | B3 [glsa+ cve] | ||
Package list: | Runtime testing required: | --- |
Description
Sam James
2020-03-02 17:16:24 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=346ca2b2225d7125895bea03c26f9675c8db0419 commit 346ca2b2225d7125895bea03c26f9675c8db0419 Author: Sergei Trofimovich <slyfox@gentoo.org> AuthorDate: 2020-03-03 14:59:12 +0000 Commit: Sergei Trofimovich <slyfox@gentoo.org> CommitDate: 2020-03-03 14:59:12 +0000 app-emulation/qemu: drop old, bug #711334 Bug: https://bugs.gentoo.org/711334 Package-Manager: Portage-2.3.89, Repoman-2.3.20 Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org> app-emulation/qemu/Manifest | 2 - app-emulation/qemu/qemu-4.0.0-r50.ebuild | 813 ------------------------------ app-emulation/qemu/qemu-4.1.0-r1.ebuild | 825 ------------------------------- 3 files changed, 1640 deletions(-) (switching bug status to in progress) Added to an existing GLSA request. This issue was resolved and addressed in GLSA 202003-66 at https://security.gentoo.org/glsa/202003-66 by GLSA coordinator Thomas Deutschmann (whissi). |