* SECURITY UPDATE: denial of service via leak in virtFS
- debian/patches/CVE-2017-7377.patch: fix file descriptor leak in
hw/9pfs/virtio-9p.c.
- CVE-2017-7377
* SECURITY UPDATE: denial of service in cirrus_vga
- debian/patches/CVE-2017-7718.patch: check parameters in
hw/display/cirrus_vga_rop.h.
- CVE-2017-7718
* SECURITY UPDATE: code execution via cirrus_vga OOB r/w
- debian/patches/CVE-2017-7980-1.patch: handle negative pitch in
hw/display/cirrus_vga.c.
- debian/patches/CVE-2017-7980-2.patch: allow zero source pitch in
hw/display/cirrus_vga.c.
- debian/patches/CVE-2017-7980-3.patch: fix blit address mask handling
in hw/display/cirrus_vga.c.
- debian/patches/CVE-2017-7980-4.patch: fix patterncopy checks in
hw/display/cirrus_vga.c.
- debian/patches/CVE-2017-7980-5.patch: revert allow zero source pitch
in hw/display/cirrus_vga.c.
- debian/patches/CVE-2017-7980-6.patch: stop passing around dst
pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
hw/display/cirrus_vga_rop2.h.
- debian/patches/CVE-2017-7980-7.patch: stop passing around src
pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
hw/display/cirrus_vga_rop2.h.
- debian/patches/CVE-2017-7980-8.patch: fix off-by-one in
hw/display/cirrus_vga_rop.h.
- debian/patches/CVE-2017-7980-9.patch: fix cirrus_invalidate_region in
hw/display/cirrus_vga.c.
- CVE-2017-7980
* SECURITY UPDATE: denial of service via memory leak in virtFS
- debian/patches/CVE-2017-8086.patch: fix leak in
hw/9pfs/virtio-9p-xattr.c.
- CVE-2017-8086
* SECURITY UPDATE: denial of service via leak in audio
- debian/patches/CVE-2017-8309.patch: release capture buffers in
audio/audio.c.
- CVE-2017-8309
* SECURITY UPDATE: denial of service via leak in keyboard
- debian/patches/CVE-2017-8379-1.patch: limit kbd queue depth in
ui/input.c.
- debian/patches/CVE-2017-8379-2.patch: don't queue delay if paused in
ui/input.c.
- CVE-2017-8379
* SECURITY REGRESSION: Windows 7 VGA compatibility issue (LP: #1581936)
- debian/patches/lp1581936.patch: add sr_vbe register set to
hw/display/vga.c, hw/display/vga_int.h.
-- Marc Deslauriers <email address hidden> Wed, 10 May 2017 15:50:30 -0400
This bug was fixed in the package qemu - 2.0.0+dfsg- 2ubuntu1. 34
--------------- dfsg-2ubuntu1. 34) trusty-security; urgency=medium
qemu (2.0.0+
* SECURITY UPDATE: denial of service via leak in virtFS patches/ CVE-2017- 7377.patch: fix file descriptor leak in 9pfs/virtio- 9p.c. patches/ CVE-2017- 7718.patch: check parameters in display/ cirrus_ vga_rop. h. patches/ CVE-2017- 7980-1. patch: handle negative pitch in display/ cirrus_ vga.c. patches/ CVE-2017- 7980-2. patch: allow zero source pitch in display/ cirrus_ vga.c. patches/ CVE-2017- 7980-3. patch: fix blit address mask handling cirrus_ vga.c. patches/ CVE-2017- 7980-4. patch: fix patterncopy checks in display/ cirrus_ vga.c. patches/ CVE-2017- 7980-5. patch: revert allow zero source pitch cirrus_ vga.c. patches/ CVE-2017- 7980-6. patch: stop passing around dst cirrus_ vga.c, hw/display/ cirrus_ vga_rop. h, display/ cirrus_ vga_rop2. h. patches/ CVE-2017- 7980-7. patch: stop passing around src cirrus_ vga.c, hw/display/ cirrus_ vga_rop. h, display/ cirrus_ vga_rop2. h. patches/ CVE-2017- 7980-8. patch: fix off-by-one in display/ cirrus_ vga_rop. h. patches/ CVE-2017- 7980-9. patch: fix cirrus_ invalidate_ region in display/ cirrus_ vga.c. patches/ CVE-2017- 8086.patch: fix leak in 9pfs/virtio- 9p-xattr. c. patches/ CVE-2017- 8309.patch: release capture buffers in audio.c. patches/ CVE-2017- 8379-1. patch: limit kbd queue depth in patches/ CVE-2017- 8379-2. patch: don't queue delay if paused in patches/ lp1581936. patch: add sr_vbe register set to display/ vga.c, hw/display/ vga_int. h.
- debian/
hw/
- CVE-2017-7377
* SECURITY UPDATE: denial of service in cirrus_vga
- debian/
hw/
- CVE-2017-7718
* SECURITY UPDATE: code execution via cirrus_vga OOB r/w
- debian/
hw/
- debian/
hw/
- debian/
in hw/display/
- debian/
hw/
- debian/
in hw/display/
- debian/
pointers in hw/display/
hw/
- debian/
pointers in hw/display/
hw/
- debian/
hw/
- debian/
hw/
- CVE-2017-7980
* SECURITY UPDATE: denial of service via memory leak in virtFS
- debian/
hw/
- CVE-2017-8086
* SECURITY UPDATE: denial of service via leak in audio
- debian/
audio/
- CVE-2017-8309
* SECURITY UPDATE: denial of service via leak in keyboard
- debian/
ui/input.c.
- debian/
ui/input.c.
- CVE-2017-8379
* SECURITY REGRESSION: Windows 7 VGA compatibility issue (LP: #1581936)
- debian/
hw/
-- Marc Deslauriers <email address hidden> Wed, 10 May 2017 15:50:30 -0400