Ubuntu
qemu package

  1. Focal (20.04)
  2. Bug #1905067
  3. Comment #3

Comment 3 for bug 1905067

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

This looks a lot like
https://mail.gnu.org/archive/html/qemu-devel/2020-09/msg00212.html

You'd think the offending commit mentioned there is actually in 5.1 and not earlier.
But it is backported in Groovy as part of
  Bug-Debian: https://bugs.debian.org/964793
  Bug-Debian: https://bugs.debian.org/964247
  https://bugs.launchpad.net/qemu/+bug/1886318
It already had one follow on fix in
  d/p/riscv-allow-64-bit-access-to-SiFive-CLINT.patch

Focal has that as well via CVE fixes:
  d/p/ubuntu/hw-riscv-Allow-64-bit-access-to-SiFive-CLINT.patch
  debian/patches/ubuntu/CVE-2020-13754-1.patch

Chances are we need this later follow on fix as well.

I wanted to check for Focal for stable patches of 4.2 (<email address hidden>) anyway (but there is not 4.2.2 yet). This would be one of them, but one step at a time.

I guess we need to backport https://git.qemu.org/?p=qemu.git;a=commit;h=ab3d207fe89bc0c63739db19e177af49179aa457

@Sean - if I'd build you qemu with that fix could you test it? If so what would you need qemu for F&G ?