[ubuntu/xenial-security] qemu 1:2.5+dfsg-5ubuntu10.28 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Wed May 16 11:58:12 UTC 2018


qemu (1:2.5+dfsg-5ubuntu10.28) xenial-security; urgency=medium

  * SECURITY UPDATE: arbitrary code execution via load_multiboot
    - debian/patches/CVE-2018-7550.patch: handle bss_end_addr being zero in
      hw/i386/multiboot.c.
    - CVE-2018-7550

qemu (1:2.5+dfsg-5ubuntu10.27) xenial; urgency=medium

  [ Rafael David Tinoco ]
  * Fix vhost-user shutdown alllowing proper cleanup: (LP: #1743637)
    - d/p/ubuntu/lp-1743637-vhost-user-fix-use-after-free.patch
    - d/p/ubuntu/lp-1743637-vhost-user-keep-vhost_net-after-disconnection.patch

qemu (1:2.5+dfsg-5ubuntu10.26) xenial; urgency=medium

  * d/p/ubuntu/lp-1705743-fix-vnc-crash.patch: fix crash when using long or
    invalid vnc connection setups (LP: #1705743)

qemu (1:2.5+dfsg-5ubuntu10.25) xenial; urgency=medium

  [ Murilo Opsfelder Ara├║jo ]
  * debian/patches/ubuntu/lp-1723914-ppc64-set-msr-register.patch:
    properly set MSR register for ppc64 targets (LP: #1723914)

  [ Yasmin Beatriz Alves da Silva ]
  * debian/patches/ubuntu/lp-1723904-sprs-backport.patch:
    Fix handling of Power8 special purpose registers (LP: #1723904)

Date: 2018-05-14 11:49:25.897072+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/qemu/1:2.5+dfsg-5ubuntu10.28
-------------- next part --------------
Sorry, changesfile not available.


More information about the Xenial-changes mailing list