[ubuntu-cloud-archive/liberty-proposed] qemu (Accepted)
James Page
james.page at ubuntu.com
Fri Oct 2 07:52:41 UTC 2015
qemu (1:2.3+dfsg-5ubuntu7~cloud0) trusty-liberty; urgency=medium
.
* New update for the Ubuntu Cloud Archive.
.
qemu (1:2.3+dfsg-5ubuntu7) wily; urgency=medium
.
* SECURITY UPDATE: denial of service via NE2000 driver
- debian/patches/CVE-2015-5278.patch: fix infinite loop in
hw/net/ne2000.c.
- CVE-2015-5278
* SECURITY UPDATE: denial of service and possible code execution via
heap overflow in NE2000 driver
- debian/patches/CVE-2015-5279.patch: validate ring buffer pointers in
hw/net/ne2000.c.
- CVE-2015-5279
* SECURITY UPDATE: denial of service via e1000 infinite loop
- debian/patches/CVE-2015-6815.patch: check bytes in hw/net/e1000.c.
- CVE-2015-6815
* SECURITY UPDATE: denial of service via illegal ATAPI commands
- debian/patches/CVE-2015-6855.patch: fix ATAPI command permissions in
hw/ide/core.c.
- CVE-2015-6855
Date: Tue, 29 Sep 2015 11:54:17 +0100
Changed-By: James Page <james.page at ubuntu.com>
Signed-By: James Page <james.page at ubuntu.com>
Published-By: James Page <james.page at ubuntu.com>
More information about the Cloud-archive-changes
mailing list