Launchpad.net

CVE 2019-6778

In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.

CVE-2019-6778 (Candidate) is related to these bugs:

Bug #1765364: Backport spectre/meltdown fixes on qemu for ppc64 into 16.04 and possibly 14.04 LTS releases

		In	Importance	Status
1765364	Backport spectre/meltdown fixes on qemu for ppc64 into 16.04 and possibly 14.04 LTS releases	qemu (Ubuntu)	Critical	Fix Released
1765364	Backport spectre/meltdown fixes on qemu for ppc64 into 16.04 and possibly 14.04 LTS releases	The Ubuntu-power-systems project	Critical	Fix Released
1765364	Backport spectre/meltdown fixes on qemu for ppc64 into 16.04 and possibly 14.04 LTS releases	The Ubuntu-power-systems project ubuntu-16.04	Critical	Invalid
1765364	Backport spectre/meltdown fixes on qemu for ppc64 into 16.04 and possibly 14.04 LTS releases	qemu (Ubuntu Xenial)	Critical	Fix Released
1765364	Backport spectre/meltdown fixes on qemu for ppc64 into 16.04 and possibly 14.04 LTS releases	The Ubuntu-power-systems project ubuntu-14.04	Critical	Invalid

Bug #1782206: KVM enable SnowRidge Accelerator Interfacing Architecture (AIA)

		In	Importance	Status
1782206	KVM enable SnowRidge Accelerator Interfacing Architecture (AIA)	xen (Ubuntu)	Wishlist	Incomplete
1782206	KVM enable SnowRidge Accelerator Interfacing Architecture (AIA)	qemu (Ubuntu)	Wishlist	Fix Released
1782206	KVM enable SnowRidge Accelerator Interfacing Architecture (AIA)	linux (Ubuntu)	Wishlist	Triaged

Bug #1818264: QEMU 2.11.1 VM crash when performing block pull. bdrv_co_do_copy_on_readv

		In	Importance	Status
1818264	QEMU 2.11.1 VM crash when performing block pull. bdrv_co_do_copy_on_readv	qemu (Ubuntu)	Undecided	Fix Released
1818264	QEMU 2.11.1 VM crash when performing block pull. bdrv_co_do_copy_on_readv	qemu (Ubuntu Cosmic)	Undecided	Fix Released
1818264	QEMU 2.11.1 VM crash when performing block pull. bdrv_co_do_copy_on_readv	qemu (Ubuntu Bionic)	Undecided	Fix Released

Bug #1820291: fsfreeze-hook script is misplaced in qemu-guest-agent

		In	Importance	Status
1820291	fsfreeze-hook script is misplaced in qemu-guest-agent	qemu (Ubuntu)	Undecided	Fix Released
1820291	fsfreeze-hook script is misplaced in qemu-guest-agent	qemu (Ubuntu Cosmic)	Undecided	Fix Released
1820291	fsfreeze-hook script is misplaced in qemu-guest-agent	qemu (Ubuntu Bionic)	Undecided	Fix Released

Bug #1828038: [19.10 FEAT] Update hardware CPU Model z14

Summary				In	Importance	Status
	1828038	[19.10 FEAT] Update hardware CPU Model z14		qemu (Ubuntu)	Undecided	Fix Released
	1828038	[19.10 FEAT] Update hardware CPU Model z14		Ubuntu on IBM z Systems	High	Fix Released

Bug #1830238: [19.10 FEAT] zKVM: Add hardware CPU Model - qemu part

Summary				In	Importance	Status
	1830238	[19.10 FEAT] zKVM: Add hardware CPU Model - qemu part		qemu (Ubuntu)	Undecided	Fix Released
	1830238	[19.10 FEAT] zKVM: Add hardware CPU Model - qemu part		Ubuntu on IBM z Systems	High	Fix Released

Bug #1830243: [19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu

		In	Importance	Status
1830243	[19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu	qemu (Ubuntu)	Undecided	Fix Released
1830243	[19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu	Ubuntu on IBM z Systems	High	Fix Released
1830243	[19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu	qemu (Ubuntu Bionic)	Undecided	Fix Released
1830243	[19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu	qemu (Ubuntu Eoan)	Undecided	Fix Released
1830243	[19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu	qemu (Ubuntu Xenial)	Undecided	Fix Released
1830243	[19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu	qemu (Ubuntu Disco)	Undecided	Fix Released
1830243	[19.10 FEAT] KVM: Secure Linux Boot Toleration - qemu	qemu (Ubuntu Cosmic)	Undecided	Won't Fix

Bug #1832622: QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)

		In	Importance	Status
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	qemu (Ubuntu)	Undecided	Fix Released
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	The Ubuntu-power-systems project	High	Fix Released
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	qemu (Ubuntu Xenial)	Undecided	Won't Fix
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	qemu (Ubuntu Bionic)	High	Fix Released
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	qemu (Ubuntu Cosmic)	Undecided	Won't Fix
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	qemu (Ubuntu Eoan)	Undecided	Fix Released
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	qemu (Ubuntu Disco)	High	Fix Released
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	linux (Ubuntu)	Undecided	Fix Released
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	linux (Ubuntu Bionic)	Undecided	Fix Released
1832622	QEMU - count cache flush Spectre v2 mitigation (CVE) (required for POWER9 DD2.3)	linux (Ubuntu Disco)	High	Fix Released

See the

CVE page on Mitre.org for more details.