[ubuntu/xenial-security] qemu 1:2.5+dfsg-5ubuntu10.36 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Mar 27 11:55:03 UTC 2019
qemu (1:2.5+dfsg-5ubuntu10.36) xenial-security; urgency=medium
* Spectre/Meltdown fixes for ppc64 (LP: #1765364)
- debian/patches/lp1765364/*.patches: add backported capabilities and
spectre/meltdown commits.
* SECURITY UPDATE: race during file renaming in v9fs_wstat
- debian/patches/CVE-2018-19489.patch: add locks to hw/9pfs/9p.c.
- CVE-2018-19489
* SECURITY UPDATE: heap based buffer overflow in slirp
- debian/patches/CVE-2019-6778.patch: check data length while emulating
ident function in slirp/tcp_subr.c.
- CVE-2019-6778
qemu (1:2.5+dfsg-5ubuntu10.35) xenial; urgency=medium
* Fix deadlock when detaching network interface (LP: #1818880)
Fixed by upstream patch:
- d/p/lp-1818880-rcu-disable-atfork.patch: rcu: completely disable
pthread_atfork callbacks as soon as possible
qemu (1:2.5+dfsg-5ubuntu10.34) xenial; urgency=medium
* d/p/ubuntu/lp1807743-linux-user-timerfd.patch: fix define for
timerfd_create system call (LP: #1807743)
Date: 2019-03-22 23:44:28.575403+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/qemu/1:2.5+dfsg-5ubuntu10.36
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list