Debian
qemu package

qemu 1:5.2+dfsg-11+deb11u2 source package in Debian

Changelog

qemu (1:5.2+dfsg-11+deb11u2) bullseye-security; urgency=medium

  * virtio-net-fix-map-leaking-on-error-during-receive-CVE-2022-26353.patch
    fix memory leak after fix for CVE-2021-3748
  * vhost-vsock-detach-the-virqueue-element-on-error-CVE-2022-26354.patch
    vhost-sock device was not detaching invalid element from
    the virtqueue on error
  * ui-cursor-fix-integer-overflow-in-cursor_alloc-CVE-2021-4206.patch,
    display-qxl-render-fix-race-condition-in-qxl_cursor-CVE-2021-4207.patch
    two flaws can lead to allocation of small cursor object followed by a
    subsequent heap-based buffer overflow with a potential for executing
    arbitrary code within the context of QEMU process
  * virtiofsd-drop-membership-of-all-supplementary-group-CVE-2022-0358.patch
    potential group escalation allowed by virtiofsd

 -- Michael Tokarev <email address hidden>  Wed, 04 May 2022 22:50:01 +0300

Upload details

Uploaded by:
Debian QEMU Team
Uploaded to:
Bullseye
Original maintainer:
Debian QEMU Team
Architectures:
any all
Section:
otherosfs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
qemu_5.2+dfsg-11+deb11u2.dsc 6.5 KiB 6c3675cb803c23c1c2133e7c0bafccb8e9bd4a752c969f483cfc76583181f3d7
qemu_5.2+dfsg.orig.tar.xz 18.8 MiB be5ae7ddc88d68af81c7b2435b95c1cad4e9416c9a1426ee5a6a4b9a9c0bf87e
qemu_5.2+dfsg-11+deb11u2.debian.tar.xz 122.2 KiB 6204ddd09ec5965120bcf10a464dca9558f14ed3da83f00b6db141c85cd71cc6

No changes file available.

Binary packages built by this source