Ubuntu
qemu package

Overview
Code
Bugs
Blueprints
Translations
Answers

Xenial (16.04)
Bug #1765364
Comment #32

Comment 32 for bug 1765364

Revision history for this message

Launchpad Janitor (janitor) wrote on 2019-03-27:

#32

This bug was fixed in the package qemu - 1:2.5+dfsg-5ubuntu10.36

---------------
qemu (1:2.5+dfsg-5ubuntu10.36) xenial-security; urgency=medium

  * Spectre/Meltdown fixes for ppc64 (LP: #1765364)
    - debian/patches/lp1765364/*.patches: add backported capabilities and
      spectre/meltdown commits.
  * SECURITY UPDATE: race during file renaming in v9fs_wstat
    - debian/patches/CVE-2018-19489.patch: add locks to hw/9pfs/9p.c.
    - CVE-2018-19489
  * SECURITY UPDATE: heap based buffer overflow in slirp
    - debian/patches/CVE-2019-6778.patch: check data length while emulating
      ident function in slirp/tcp_subr.c.
    - CVE-2019-6778

-- Marc Deslauriers <email address hidden> Fri, 22 Mar 2019 14:19:08 -0400

Ubuntuqemu package

Comment 32 for bug 1765364

Ubuntu
qemu package