This bug was fixed in the package qemu - 1:2.8+dfsg-3ubuntu2.9~cloud6
---------------
qemu (1:2.8+dfsg-3ubuntu2.9~cloud6) xenial-ocata; urgency=medium
.
* SECURITY UPDATE: Add support for exposing md-clear functionality
to guests
- d/p/ubuntu/enable-md-clear.patch
- CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
* SECURITY UPDATE: heap overflow when loading device tree blob
- d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
copy the device tree blob into is.
- CVE-2018-20815
* SECURITY UPDATE: information leak in SLiRP
- d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
emulating ident.
- CVE-2019-9824
* d/p/ubuntu/fix-virtio-net-regression.patch: Fix regression of failing qemu
guest networking (LP: #1829380).
This bug was fixed in the package qemu - 1:2.8+dfsg- 3ubuntu2. 9~cloud6
---------------
qemu (1:2.8+ dfsg-3ubuntu2. 9~cloud6) xenial-ocata; urgency=medium enable- md-clear. patch CVE-2018- 20815.patch: specify how large the buffer to CVE-2019- 9824.patch: check sscanf result when fix-virtio- net-regression. patch: Fix regression of failing qemu
.
* SECURITY UPDATE: Add support for exposing md-clear functionality
to guests
- d/p/ubuntu/
- CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
* SECURITY UPDATE: heap overflow when loading device tree blob
- d/p/ubuntu/
copy the device tree blob into is.
- CVE-2018-20815
* SECURITY UPDATE: information leak in SLiRP
- d/p/ubuntu/
emulating ident.
- CVE-2019-9824
* d/p/ubuntu/
guest networking (LP: #1829380).