Change logs for qemu source package in Sid

  • qemu (1:3.1+dfsg-7) unstable; urgency=high
    
      [ Michael Tokarev ]
      * device_tree-don-t-use-load_image-CVE-2018-20815.patch
        fix heap buffer overflow while loading device tree blob
        (Closes: CVE-2018-20815)
    
      [ Christian Ehrhardt ]
      * qemu-guest-agent: fix path of fsfreeze-hook (LP: #1820291)
       - d/qemu-guest-agent.install: use correct path for fsfreeze-hook
       - d/qemu-guest-agent.pre{rm|inst}/.postrm: special handling for
         mv_conffile since the new path is a directory in the old package
         version which can not be handled by mv_conffile.
    
     -- Michael Tokarev <email address hidden>  Wed, 27 Mar 2019 14:24:06 +0300
  • qemu (1:3.1+dfsg-6) unstable; urgency=high
    
      * slirp-check-sscanf-result-when-emulating-ident-CVE-2019-9824.patch
        fix information leakage in slirp code (Closes: CVE-2019-9824)
    
     -- Michael Tokarev <email address hidden>  Mon, 18 Mar 2019 14:41:51 +0300
  • qemu (1:3.1+dfsg-5) unstable; urgency=high
    
      * i2c-ddc-fix-oob-read-CVE-2019-3812.patch fixes
        OOB read in hw/i2c/i2c-ddc.c which allows for memory disclosure.
        Closes: #922635, CVE-2019-3812
    
     -- Michael Tokarev <email address hidden>  Mon, 11 Mar 2019 14:30:44 +0300
  • qemu (1:3.1+dfsg-4) unstable; urgency=medium
    
      * mention closing of #855043 by 3.1+dfsg-3
      * disable pvrdma for now, it is a bit too buggy.
        Besides several security holes there are many other bugs there as well,
        and the amount of patches applied upstream after 3.1 release is large
        (Closes, or really makes unimportant again: CVE-2018-20123 CVE-2018-20124
         CVE-2018-20125 CVE-2018-20126 CVE-2018-20191 CVE-2018-20216)
    
     -- Michael Tokarev <email address hidden>  Mon, 11 Feb 2019 14:00:09 +0300
  • qemu (1:3.1+dfsg-3) unstable; urgency=medium
    
      [ Michael Tokarev ]
      * mention #696289 closed by 2.10
      * move ovmf to recommends on debian and update aarch ovmf refs
        (Closes: #889885)
      * remove /dev/kvm permission handling (moved to systemd 239-6)
        (Closes: #892945)
      * build qemu-palcode using alpha cross-compiler
        (Closes: #913103)
      * fix path in qemu-guest-agent.service (#918378), fixs Bind[s]To
        (Closes: #918378
      * use int for sparc64 timeval.tv_usec
        (Closes: #920032)
      * build-depend on libglusterfs-dev not glusterfs-common
        (Closes: #919668, #881527)
      * add breaks: qemu-system-data to qemu-system-common,
        to close #916279 completely (all this can be removed after buster)
        (Closes: #916279)
      * scsi-generic-avoid-possible-oob-access-to-r-buf-CVE-2019-6501.patch
        (Closes: #920222, CVE-2019-6501)
      * slirp-check-data-length-while-emulating-ident-function-CVE-2019-6778.patch
        (Closes: #921525)
      * pvrdma-release-device-resources-on-error-CVE-2018-20123.patch
        (Closes: #916442, CVE-2018-20123)
      * enable rdma and pvrdma, build-depend on
        librdmacm-dev, libibverbs-dev, libibumad-dev
      * sync debian/qemu-user-static.1 and debian/qemu-user.1 generate the latter
        from the former (finally Closes: #901407)
      * move ivshmem-server & ivshmem-client from qemu-utils to qemu-system-common
        (the binaries are also specific to qemu-system, not useable alone)
      * move qemu-pr-helper from qemu-utils to qemu-system-common -
        this is an internal qemu-system helper, with possible socket activation,
        not intended for use outside of qemu-system
    
      [ Christian Ehrhardt ]
      * qemu-guest-agent: freeze-hook to ignore dpkg files (packaging changes)
    
     -- Michael Tokarev <email address hidden>  Wed, 06 Feb 2019 12:23:01 +0300
  • qemu (1:3.1+dfsg-2) unstable; urgency=medium
    
      * d/rules: split arch and indep builds
      * enable s390x cross-compiler and build s390-ccw.img (Closes: #684909)
      * build x86 optionrom in qemu-system-data (was in seabios/debian/)
      * qemu-system-data: Multi-Arch: allowed=>foreign (Closes: #903562)
      * fix Replaces: version for qemu-system-common (Closes: #916279)
      * add simple udev rules file for systemd guest agent (Closes: #916674)
      * usb-mtp-use-O_NOFOLLOW-and-O_CLOEXEC-CVE-2018-16872.patch
        Race condition in usb_mtp implementation (Closes: #916397)
      * bt-use-size_t-type-for-length-parameters-instead-of-int-CVE-2018-19665.patch
        Memory corruption in bluetooth subsystem (Closes: #916278)
      * hw_usb-fix-mistaken-de-initialization-of-CCID-state.patch (Closes: #917007)
      * bump debhelper compat to 12 (>>11)
      * d/rules: use dh_missing instead of dh_install --list-missing (compat=12)
      * use dh_installsystemd for guest agent (Closes: #916625)
      * mention closing by 3.1: Closes: #912655, CVE-2018-16847
      * mention closing by 2.10:
        Closes: #849798, CVE-2016-10028
        Closes: CVE-2017-9060
        Closes: CVE-2017-8284
    
     -- Michael Tokarev <email address hidden>  Fri, 21 Dec 2018 16:51:39 +0300
  • qemu (1:3.1+dfsg-1) unstable; urgency=medium
    
      * new upstream release (3.1)
      * Security bugs fixed by upstream:
        Closes: #910431, CVE-2018-10839:
         integer overflow leads to buffer overflow issue
        Closes: #911468, CVE-2018-17962
         pcnet: integer overflow leads to buffer overflow
        Closes: #911469, CVE-2018-17963
         net: ignore packets with large size
        Closes: #908682, CVE-2018-3639
         qemu should be able to pass the ssbd cpu flag
        Closes: #901017, CVE-2018-11806
         m_cat in slirp/mbuf.c in Qemu has a heap-based buffer overflow
         via incoming fragmented datagrams
        Closes: #902725, CVE-2018-12617
         qmp_guest_file_read in qemu-ga has an integer overflow
        Closes: #907500, CVE-2018-15746
         qemu-seccomp might allow local OS guest users to cause a denial of service
        Closes: #915884, CVE-2018-16867
         dev-mtp: path traversal in usb_mtp_write_data of the MTP
        Closes: #911499, CVE-2018-17958
         Buffer Overflow in rtl8139_do_receive in hw/net/rtl8139.c
         because an incorrect integer data type is used
        Closes: #911470, CVE-2018-18438
         integer overflows because IOReadHandler and its associated functions
         use a signed integer data type for a size value
        Closes: #912535, CVE-2018-18849
         lsi53c895a: OOB msg buffer access leads to DoS
        Closes: #914604, CVE-2018-18954
         pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1
         allows out-of-bounds write or read access to PowerNV memory
        Closes: #914599, CVE-2018-19364
         Use-after-free due to race condition while updating fid path
        Closes: #914727, CVE-2018-19489
         9pfs: crash due to race condition in renaming files
      * remove patches which were applied upstream
      * add new manpage qemu-cpu-models.7
      * qemu-system-ppcemb is gone, use qemu-system-ppc[64]
      * do-not-link-everything-with-xen.patch (trivial)
      * get-orig-source: handle 3.x and 4.x, and remove roms again, as
        upstream wants us to use separate source packages for that stuff
      * move generated data from qemu-system-data back to qemu-system-common
      * d/control: enable spice on arm64 (Closes: #902501)
        (probably should enable on all)
      * d/control: change git@salsa urls to https
      * add qemu-guest-agent.service (Closes: #795486)
      * enable opengl support and virglrenderer (Closes: #813658)
      * simplify d/rules just a little bit
      * build-depend on libudev-dev, for qga
    
     -- Michael Tokarev <email address hidden>  Sun, 02 Dec 2018 19:10:27 +0300
  • qemu (1:2.12+dfsg-3) unstable; urgency=medium
    
      * make qemu-system-foo depending
        on qemu-system-data >>ver~, not >>ver
        (Closes: #900585)
      * do not build qemu-system-gui on hppa
      * use dh_lintian for lintian overrides
      * update VCS fields to point to salsa.debian.org
    
     -- Michael Tokarev <email address hidden>  Fri, 01 Jun 2018 21:42:29 +0300
  • qemu (1:2.12+dfsg-2) unstable; urgency=medium
    
      * create new package, qemu-system-gui,
        and package GTK module and audio modules in there
        Closes: #850584
      * add an item about qemu-system-gui to debian/qemu-system-common.NEWS
      * qemu-system-*: require more recent qemu-system-common
      * switch all builds to be in a single b/ subdir
      * d/get-orig-source: remove .oco (object) files from roms/SLOF/
      * refresh patches/use-fixed-data-path.patch: remove now-unused local var too
      * ccid-card-passthru-fix-regression-in-realize.patch (Closes: #900006)
      * debian/control-in: enable seccomp on linux-any (Closes: #900055)
      * create new arch-indep package qemu-system-data, for data and firmware files.
        Move common data files from qemu-system-common to it, for now
      * fix sata/ahci stalls (ahci-fix-PxCI-register-race.patch)
      * tcg-i386-Fix-dup_vec-in-non-AVX2-codepath.patch (Closes: #900372)
    
     -- Michael Tokarev <email address hidden>  Thu, 31 May 2018 13:22:55 +0300
  • qemu (1:2.12+dfsg-1) unstable; urgency=medium
    
      * new upstream release
      * get-orig-source: do not remove roms/* directories,
        since we will use these to build the roms
      * disable building on hppa arch (not supported upstream since ong time)
      * Use https://download.qemu.org to download new tarballs (Closes: #895067)
      * add Breaks: binfmt-support (<<2.1.7) so that --fix-binary works;
        also fix qemu-user-static description (Closes: #896478)
    
     -- Michael Tokarev <email address hidden>  Thu, 26 Apr 2018 20:29:36 +0300
  • qemu (1:2.12~rc3+dfsg-2) unstable; urgency=medium
    
      * fix typo in previous changelog entry
      * add riscv32/riscv64 to qemu-debootstrap
      * install gtk message catalogs into qemu-system-common (Closes: #878130)
        (and install-gtk-message-catalogs-if-CONFIG_GTK.patch)
      * tcg_mips-handle-large-offsets-from-target-env-to-tlb_table.patch:
        fix FTBFS on mips targets
    
     -- Michael Tokarev <email address hidden>  Sat, 14 Apr 2018 17:01:24 +0300
  • qemu (1:2.12~rc3+dfsg-1) unstable; urgency=medium
    
      * new upstream 2.12 release (Release Candidate 3)
        Closes: #892041, CVE-2018-7550
        Closes: #884806, CVE-2017-15124
        Closes: #887392, CVE-2018-5683
        Closes: #892497, CVE-2018-7858
        Closes: #882136, CVE-2017-16845
        Closes: #886532, #892947, #891375, #887892, #860822, #851694
      * refresh local debian patches
      * d/rules: enable new system (hppa riscv32 riscv64) and
        user (aarch64_be xtensa xtensaeb riskc32 riscv64) targets
        Closes: #893767
      * fix d/source/options to match current reality
      * drop use-data-path.patch, upstream now has --firmwarepath= option
      * enable capstone disassembler library support
        (build-depend on libcapstone-dev)
      * debian/extract-config-opts: use tab for option / condition separator
      * qemu-block-extra: install only block modules
      * make `qemu' metapackage to be dummy, to remove it in a future release
      * do not suggest kmod, it is pointless
      * install /usr/bin/qemu-pr-helper to qemu-utils package
      * switch from sdl2 to gtk ui
        Closes: #839695, #886671, #879536, #879534, #879532, #879193, #894852
      * qemu-system-ppc: forgotten qemu-system-ppc64le.1 link
      * mention closing of #880582 by 2.11
      * package will built against spice 0.14, so Closes: #854959
      * check sfdisk presence in qemu-make-debian-root (Closes: #872098)
      * check mke2fs presence in qemu-make-debian-root (Closes: #887207)
      * debian/binfmt-update-in: include forgotten hppa (Closes: #891261)
      * debian/TODO: removed some old ToDo items
      * use binfmt-support --fix-binary option (Closes: #868030)
    
     -- Michael Tokarev <email address hidden>  Thu, 12 Apr 2018 19:04:03 +0300
  • qemu (1:2.11+dfsg-1) unstable; urgency=medium
    
      [ Michael Tokarev ]
      * update to new upstream (2.11) release
        Closes: #883625, CVE-2017-17381
        Closes: #880832, CVE-2017-15289
        Closes: #880836, CVE-2017-15268
        Closes: #883399, CVE-2017-15119
        Closes: #883406, CVE-2017-15118
      * update to new upstream, remove old patches, refresh debian patches
      * disable sdl audio driver (pulse or oss should work fine)
      * do not build-depend on libx11-dev (libsdl2-dev already depends on it)
      * move libpulse-dev build-dep to a better place
      * clean up d/control from various old conflicts/replaces/provides
      * remove --with-system-pixman, not used anymore
      * remove ubuntu-specific qemu-system-aarch64 transitional package (trusty)
      * remove ubuntu-specific mentions of old qemu-kvm-spice package (precise)
      * remove old comment about /etc/kvm from qemu-kvm description
      * add Suggests: openbios-sparc for qemu-system-sparc on ubuntu
        (similar to what is done for qemu-system-ppc)
      * update get-orig-source.sh with new blobs/submodules
      * update debian/watch a bit
    
      [ Aurelien Jarno ]
      * debian/control-in: build qemu-system and qemu-user on mips64 and
        mips64el.  Closes: #880485.
    
      [ Christian Ehrhardt ]
      * ppc64[le]: provide symlink matching arch name
      * d/control-in: Enable seccomp for ppc64el,
        this bumps minimum libseccomp version
    
     -- Michael Tokarev <email address hidden>  Thu, 11 Jan 2018 14:42:12 +0300
  • qemu (1:2.10.0+dfsg-2) unstable; urgency=medium
    
      * update to upstream 2.10.1 point release
        Closes: #877160
        Closes: CVE-2017-13673
      * remove 3 patches included upstream:
        multiboot-validate-multiboot-header-address-values-CVE-2017-14167.patch
        vga-stop-passing-pointers-to-vga_draw_line-functions-CVE-2017-13672.patch
        slirp-fix-clearing-ifq_so-from-pending-packets-CVE-2017-13711.patch
      * 9pfs-use-g_malloc0-to-allocate-space-for-xattr-CVE-2017-15038.patch
        Closes: #877890, CVE-2017-15038
      * remove-trailing-whitespace-from-qemu-options.hx.patch
        Closes: #875711
      * drop dh_makeshlibs call (was for libcacard)
      * drop linux-libc-dev build-dependency (it gets pulled by libc-dev)
      * switch from sdl1 to sdl2 (Closes: #870025)
    
     -- Michael Tokarev <email address hidden>  Sun, 08 Oct 2017 12:51:09 +0300
  • qemu (1:2.10.0+dfsg-1) unstable; urgency=medium
    
      * remove blobs, to DFSG'ify it again (there's still
        no source for some blobs included in upstream tarball)
        There's no way to revert to 2-number version due to prev. upload
      * update from upstream git (no changes but include date & commit-id):
        multiboot-validate-multiboot-header-address-values-CVE-2017-14167.patch
      * update previous changelog entry (fix bug/closes refs):
        Closes: #873851, CVE-2017-13672
        Closes: #874606, CVE-2017-14167
        Closes: #873875, CVE-2017-13711
    
     -- Michael Tokarev <email address hidden>  Sat, 23 Sep 2017 18:35:29 +0300
  • qemu (1:2.8+dfsg-7) unstable; urgency=medium
    
      * uploading to unstable all fixes which went to stretch-security
        (exactly the same as 2.8+dfsg-6+deb9u2)
    
     -- Michael Tokarev <email address hidden>  Sat, 05 Aug 2017 16:35:01 +0300
  • qemu (1:2.8+dfsg-6) unstable; urgency=high
    
      * 9pfs-local-forbid-client-access-to-metadata-CVE-2017-7493.patch
        Closes: CVE-2017-7493
      * group all 9p patches together
      * drop obsolete comment about libiscsi on ubuntu from d/control
    
     -- Michael Tokarev <email address hidden>  Tue, 23 May 2017 09:58:03 +0300
  • qemu (1:2.8+dfsg-5) unstable; urgency=high
    
      * Security fix release
      * 9pfs-local-set-path-of-export-root-to-dot-CVE-2017-7471.patch
        Closes: #860785, CVE-2017-7471
      * 9pfs-xattr-fix-memory-leak-in-v9fs_list_xattr-CVE-2017-8086.patch
        Closes: #861348, CVE-2017-8086
      * vmw_pvscsi-check-message-ring-page-count-at-init-CVE-2017-8112.patch
        Closes: #861351, CVE-2017-8112
      * scsi-avoid-an-off-by-one-error-in-megasas_mmio_write-CVE-2017-8380.patch
        Closes: #862282, CVE-2017-8380
      * input-limit-kbd-queue-depth-CVE-2017-8379.patch
        Closes: #862289, CVE-2017-8379
      * audio-release-capture-buffers-CVE-2017-8309.patch
        Closes: #862280, CVE-2017-8309
    
     -- Michael Tokarev <email address hidden>  Wed, 17 May 2017 09:01:24 +0300
  • qemu (1:2.8+dfsg-4) unstable; urgency=high
    
      * usb-ohci-limit-the-number-of-link-eds-CVE-2017-6505.patch
        Closes: #856969, CVE-2017-6505
      * linux-user-fix-apt-get-update-on-linux-user-hppa.patch
        Closes: #846084
      * update to 2.8.1 upstream stable/bugfix release
        (v2.8.1.diff from upstream, except of seabios blob bits).
        Closes: #857744, CVE-2016-9603
        Patches dropped because they're included in 2.8.1 release:
         9pfs-symlink-attack-fixes-CVE-2016-9602.patch
         char-fix-ctrl-a-b-not-working.patch
         cirrus-add-blit_is_unsafe-to-cirrus_bitblt_cputovideo-CVE-2017-2620.patch
         cirrus-fix-oob-access-issue-CVE-2017-2615.patch
         cirrus-ignore-source-pitch-as-needed-in-blit_is_unsafe.patch
         linux-user-fix-s390x-safe-syscall-for-z900.patch
         nbd_client-fix-drop_sync-CVE-2017-2630.patch
         s390x-use-qemu-cpu-model-in-user-mode.patch
         sd-sdhci-check-data-length-during-dma_memory_read-CVE-2017-5667.patch
         virtio-crypto-fix-possible-integer-and-heap-overflow-CVE-2017-5931.patch
         vmxnet3-fix-memory-corruption-on-vlan-header-stripping-CVE-2017-6058.patch
      * bump seabios dependency to 1.10.2 due to ahci fix in 2.8.1
      * 9pfs-fix-file-descriptor-leak-CVE-2017-7377.patch
        (Closes: #859854, CVE-2017-7377)
      * dma-rc4030-limit-interval-timer-reload-value-CVE-2016-8667.patch
        Closes: #840950, CVE-2016-8667
      * make d/control un-writable to stop users from changing a generated file
      * two patches from upstream to fix user-mode network with IPv6
        slirp-make-RA-build-more-flexible.patch
        slirp-send-RDNSS-in-RA-only-if-host-has-an-IPv6-DNS.patch
        (Closes: #844566)
    
     -- Michael Tokarev <email address hidden>  Mon, 03 Apr 2017 16:28:49 +0300
  • qemu (1:2.8+dfsg-3) unstable; urgency=high
    
      * urgency high due to security fixes
    
      [ Michael Tokarev ]
      * serial-fix-memory-leak-in-serial-exit-CVE-2017-5579.patch
        Closes: #853002, CVE-2017-5579
      * cirrus-ignore-source-pitch-as-needed-in-blit_is_unsafe.patch
        (needed for the next patch, CVE-2017-2620 fix)
      * cirrus-add-blit_is_unsafe-to-cirrus_bitblt_cputovideo-CVE-2017-2620.patch
        Closes: #855791, CVE-2017-2620
      * nbd_client-fix-drop_sync-CVE-2017-2630.diff
        Closes: #855227, CVE-2017-2630
      * sd-sdhci-check-transfer-mode-register-in-multi-block-CVE-2017-5987.patch
        Closes: #855159, CVE-2017-5987
      * vmxnet3-fix-memory-corruption-on-vlan-header-stripping-CVE-2017-6058.patch
        Closes: #855616, CVE-2017-6058
      * 3 CVE fixes from upstream for #853996:
        sd-sdhci-check-data-length-during-dma_memory_read-CVE-2017-5667.patch
        megasas-fix-guest-triggered-memory-leak-CVE-2017-5856.patch
        virtio-gpu-fix-resource-leak-in-virgl_cmd_resource-CVE-2017-5857.patch
        Closes: #853996, CVE-2017-5667, CVE-2017-5856, CVE-2017-5857
      * usb-ccid-check-ccid-apdu-length-CVE-2017-5898.patch
        Closes: #854729, CVE-2017-5898
      * virtio-crypto-fix-possible-integer-and-heap-overflow-CVE-2017-5931.patch
        Closes: #854730, CVE-2017-5931
      * xhci-apply-limits-to-loops-CVE-2017-5973.patch
        Closes: #855611, CVE-2017-5973
      * net-imx-limit-buffer-descriptor-count-CVE-2016-7907.patch
        Closes: #839986, CVE-2016-7907
      * cirrus-fix-oob-access-issue-CVE-2017-2615.patch
        Closes: #854731, CVE-2017-2615
      * 9pfs-symlink-attack-fixes-CVE-2016-9602.patch
        Closes: #853006
      * vnc-do-not-disconnect-on-EAGAIN.patch
        Closes: #854032
      * xhci-fix-event-queue-IRQ-handling.patch (win7 xhci issue fix)
      * xhci-only-free-completed-transfers.patch
        Closes: #855659
      * char-fix-ctrl-a-b-not-working.patch
        Closes: https://bugs.launchpad.net/bugs/1654137
      * char-drop-data-written-to-a-disconnected-pty.patch
        Closes: https://bugs.launchpad.net/bugs/1667033
      * s390x-use-qemu-cpu-model-in-user-mode.patch
        Closes: #854893
      * d/control is autogenerated, add comment
      * check if debootstrap is available in qemu-debootstrap
        Closes: #846497
    
      [ Christian Ehrhardt ]
      * (ubuntu) no more skip enable libiscsi (now in main)
      * (ubuntu) Disable glusterfs (Universe dependency)
      * (ubuntu) have qemu-system-arm suggest: qemu-efi;
        this should be a stronger relationship, but qemu-efi is still
        in universe right now.
      * (ubuntu) change dependencies for fix of wrong acl for newly
        created device node on ubuntu
    
     -- Michael Tokarev <email address hidden>  Tue, 28 Feb 2017 11:40:18 +0300
  • qemu (1:2.8+dfsg-2) unstable; urgency=medium
    
      * Revert "update binfmt registration for mipsn32"
        Reopens: #829243
        Closes: #843032
        Will re-enable it for stretch+1, since for now upgrades
        from jessie are broken (jessie comes with 3.16 kernel),
        and there's no easy fix for this
      * Revert "enable virtio gpu (virglrenderer) and opengl support"
        Revert "switch from sdl1 to gtk3"
        Revert other gtk2/drm/vte/virgl-related changes
        Reopens: #813658, #839695
        The change were too close to stretch release and too large,
        bringing too much graphics stuff for headless servers,
        will re-think this for stretch+1.
        sdl1 back: Closes: #851509
        virtio-3d bugs: Closes: #849798, #852119
      * mention closing of #769983 (multi-threaded linux-user) by 2.7
      * mention closing of #842455, CVE-2016-9101 by 2.8
      * audio-ac97-add-exit-function-CVE-2017-5525.patch (Closes: #852021)
      * audio-es1370-add-exit-function-CVE-2017-5526.patch (Closes: #851910)
      * watchdog-6300esb-add-exit-function-CVE-2016-10155.patch (Closes: #852232)
    
     -- Michael Tokarev <email address hidden>  Mon, 23 Jan 2017 14:06:54 +0300
  • qemu (1:2.8+dfsg-1) unstable; urgency=medium
    
      * new upstream release
       Closes: #837191, CVE-2016-7156
       Closes: #837316, CVE-2016-7170
       Closes: #839835, CVE-2016-7908
       Closes: #839834, CVE-2016-7909
       Closes: #840228, CVE-2016-7994
       Closes: #840236, CVE-2016-7995
       Closes: #840343, CVE-2016-8576
       Closes: #840341, CVE-2016-8577
       Closes: #840340, CVE-2016-8578
       Closes: #840948, CVE-2016-8668
       Closes: #840945, CVE-2016-8669
       Closes: #841950, CVE-2016-8909
       Closes: #841955, CVE-2016-8910
       Closes: #842463, CVE-2016-9102 CVE-2016-9103 CVE-2016-9104
                        CVE-2016-9105 CVE-2016-9106
       Closes: #846797, CVE-2016-9776
       Closes: #847381, CVE-2016-9845
       Closes: #847382, CVE-2017-9846
       Closes: #847953, CVE-2016-9907
       Closes: #847400, CVE-2016-9908
       Closes: #847951, CVE-2016-9911
       Closes: #847391, CVE-2016-9912
       Closes: #847496, CVE-2016-9913 CVE-2016-9914 CVE-2016-9915 CVE-2016-9916
       Closes: #847960, CVE-2016-9921 CVE-2016-9922
       Closes: #847957, CVE-2016-9923
       Closes: #819755, #833162
       Hopefully closes: #844361
      * remove unicore32 linux-user target, removed upstream
      * remove all patches which were applied upstream (most of them)
      * actually fix #841060
      * doc-don-t-mention-memory-it-is-m.patch, Closes: #833619
      * don't pass --enable-uuid (always enabled)
      * build-depend on libncursesw5-dev, not libncurses5-dev
      * install trace-events-all in qemu-system-common
      * do not install qemu-tech.html (not provided by upstream anymore)
      * switch from sdl1 to gtk3 (Closes: #839695)
      * enable virtio gpu (virglrenderer) and opengl support (Closes: #813658)
      * strip out -ldrm out of OPENGL_LIBS, since libdrm is actually not needed
      * enable nfs support (libnfs-dev), in qemu-block-extra
      * enable glusterfs support (glusterfs-common), in qemu-block-extra
        (Closes: #775431)
      * enable numa support (libnuma-dev) (Closes: #758189)
    
     -- Michael Tokarev <email address hidden>  Wed, 28 Dec 2016 15:31:37 +0300
  • qemu (1:2.7+dfsg-3) unstable; urgency=medium
    
      * add PIE.patch to change loadable modules linker flags, from Adrian
        (Closes: #837574)
      * linux-user-fix-s390x-safe-syscall-for-z900.patch - fix FTBFS on s390x
      * mention CVE-2016-7466 for 2.7+dfsg-1 (Closes: #838687, CVE-2016-7466)
    
     -- Michael Tokarev <email address hidden>  Thu, 27 Oct 2016 19:38:01 +0300
  • qemu (1:2.7+dfsg-2) unstable; urgency=medium
    
      * fix distribution field in previous changelog entry
      * add depends: on seabios >= 1.9 with linuxboot_dma.bin
        (Closes: #840853, #841060, #842161)
      * add more links for openbios-sparc to qemu-system-sparc,
        bump dependency (Closes: #827456)
      * include license for qemu logo files (Closes: #785362)
    
     -- Michael Tokarev <email address hidden>  Wed, 26 Oct 2016 20:04:15 +0300
  • qemu (1:2.7+dfsg-1) UNRELEASED; urgency=medium
    
      * Acknowledge the previous NMU. Thank you Andrew!
      * New upstream release, 2.7 (Closes: #748043, #839292)
        Closes: #838850, CVE-2016-7161
        Closes: #473240 (qcow encryption support has been removed)
      * removed patches which went upstream, refreshed use-data-path.patch
      * renamed remaining patches to include CVE#s and added Bug-Debian headers
      * added Depends on lsb-base to qemu-guest-agent (Closes: #840740)
      * update binfmt registration for mipsn32 (Closes: #829243)
        Thank you Adam Borowski for investigation and the patch
      * replace CVE-2016-7156 (#837339) patch with actual code from upstream
      * scsi-mptsas-use-g_new0-to-allocate-MPTSASRequest-obj-CVE-2016-7423.patch
        (Closes: #838145, CVE-2016-7423)
      * virtio-add-check-for-descriptor-s-mapped-address-CVE-2016-7422.patch
        (Closes: #838146, CVE-2016-7422)
      * scsi-pvscsi-limit-process-IO-loop-to-ring-size-CVE-2016-7421.patch
        (Closes: #838147, CVE-2016-7421)
    
     -- Michael Tokarev <email address hidden>  Fri, 14 Oct 2016 13:31:40 +0300
  • qemu (1:2.6+dfsg-3.1) unstable; urgency=high
    
      * Non-maintainer upload.
      * Security fixes from upstream:
       - virtio-error-out-if-guest-exceeds-virtqueue-size-CVE-2015-5403.patch
         (Closes: #832619, CVE-2015-5403)
       - scsi-pvscsi-avoid-infinite-loop-while-building-SG-list.patch
         (Closes: #837339, CVE-2016-7156)
       - scsi-pvscsi-check-page-count-while-initialising-descriptor-rings.patch
         (Closes: #837174, CVE-2016-7155)
       - CVE-2016-6351: scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch
         and scsi-esp-fix-migration.patch (Closes: #832621, CVE-2016-6351)
       - virtio-check-vring-descriptor-buffer-length.patch
         (Closes: #832767, CVE-2016-6490)
       - net-vmxnet3-check-for-device_active-before-write.patch
         (Closes: #834904, CVE-2016-6833)
       - net-check-fragment-length-during-fragmentation.patch
         (Closes: #834905, CVE-2016-6834)
       - net-vmxnet-check-IP-header-length.patch (Closes: #835031, CVE-2016-6835)
       - net-vmxnet-initialise-local-tx-descriptor.patch
         (Closes: #834944, CVE-2016-6836)
       - net-vmxnet-use-g_new-for-pkt-initialisation.patch
         (Closes: #834902, CVE-2016-6888)
       - CVE-2016-7116: 9pfs-forbid-.-and-.-in-file-names.patch,
         9pfs-forbid-illegal-path-names.patch and
         9pfs-handle-walk-of-.-in-the-root-directory.patch
         (Closes: #836502, CVE-2016-7116)
       - CVE-2016-7157: scsi-mptconfig-fix-an-assert-expression.patch and
         scsi-mptconfig-fix-misuse-of-MPTSAS_CONFIG_PACK.patch
         (Closes: #837603, CVE-2016-7157)
    
     -- Andrew James <email address hidden>  Wed, 14 Sep 2016 00:56:18 -0600
  • qemu (1:2.6+dfsg-3) unstable; urgency=high
    
      * more security fixes picked from upstream:
       - CVE-2016-4454 fix (vmsvga) (Closes: CVE-2016-4454)
        vmsvga-add-more-fifo-checks-CVE-2016-4454.patch
        vmsvga-move-fifo-sanity-checks-to-vmsvga_fifo_length-CVE-2016-4454.patch
        vmsvga-shadow-fifo-registers-CVE-2016-4454.patch
       - vmsvga-don-t-process-more-than-1024-fifo-commands-at-once-CVE-2016-4453.patch
        (Closes: CVE-2016-4453)
       - scsi-check-buffer-length-before-reading-scsi-command-CVE-2016-5238.patch
        (Closes: #826152, CVE-2016-5238)
      * set urgency to high due to the amount of
        security fixes accumulated so far
    
     -- Michael Tokarev <email address hidden>  Wed, 15 Jun 2016 08:54:12 +0300
  • qemu (1:2.6+dfsg-2) unstable; urgency=medium
    
      * add missing log entries for previous upload,
        remove closing of #807006 (it is not closed)
      * Added vga-add-sr_vbe-register-set.patch from upstream
        This fixes regression (in particular with win7 installer)
        introduced by the fix for CVE-2016-3712 (commit fd3c136)
      * fix-linking-relocatable-objects-on-sparc.patch (Closes: #807006)
      * Lots of security patches from upstream:
      - net-mipsnet-check-packet-length-against-buffer-CVE-2016-4002.patch
        (Closes: #821061, CVE-2016-4002)
      - i386-kvmvapic-initialise-imm32-variable-CVE-2016-4020.patch
        (Closes: #821062, CVE-2016-4020)
      - esp-check-command-buffer-length-before-write-CVE-2016-4439.patch,
        esp-check-dma-length-before-reading-scsi-command-CVE-2016-4441.patch
        (Closes: #824856, CVE-2016-4439, CVE-2016-4441)
      - scsi-mptsas-infinite-loop-while-fetching-requests-CVE-2016-4964.patch
        (Closes: #825207, CVE-2016-4964)
      - scsi-pvscsi-check-command-descriptor-ring-buffer-size-CVE-2016-4952.patch
        (Closes: #825210, CVE-2016-4952)
      - scsi-megasas-use-appropriate-property-buffer-size-CVE-2016-5106.patch
        (Closes: #825615, CVE-2016-5106)
      - scsi-megasas-initialise-local-configuration-data-buffer-CVE-2016-5105.patch
        (Closes: #825614, CVE-2016-5105)
      - scsi-megasas-check-read_queue_head-index-value-CVE-2016-5107.patch
        (Closes: #825616, CVE-2016-5107)
      - block-iscsi-avoid-potential-overflow-of-acb-task-cdb-CVE-2016-5126.patch
        (Closes: #826151, CVE-2016-5126)
      - scsi-esp-check-TI-buffer-index-before-read-write-CVE-2016-5338.patch
        (Closes: #827024, CVE-2016-5338)
      - scsi-megasas-null-terminate-bios-version-buffer-CVE-2016-5337.patch
        (Closes: #827026, CVE-2016-5337)
      * hw-dma-omap-spelling-fix-endianness.patch (lintian)
      * arm-spelling-fix-mismatch.patch (lintian)
    
     -- Michael Tokarev <email address hidden>  Mon, 13 Jun 2016 12:10:44 +0300
  • qemu (1:2.6+dfsg-1) unstable; urgency=medium
    
      * new upstream release
       Closes: #799115
       Closes: #822369, #823588
       Closes: #813698
       Closes: #807006
       Closes: #805827
       Closes: #813585
       Closes: #823830 CVE-2016-3710 CVE-2016-3712
       Closes: #813193 CVE-2016-2198
       Closes: #813194 CVE-2016-2197
       Closes: #815008 CVE-2016-2392
       Closes: #815009 CVE-2016-2391
       Closes: #815680 CVE-2016-2538
       Closes: #821038 CVE-2016-4001
       Closes: #822344 CVE-2016-4037
       Closes: #817181 CVE-2016-2841
       Closes: #817182 CVE-2016-2857
       Closes: #817183 CVE-2016-2858
       - removed all patches applied upstream
       - removed mjt-set-oem-in-rsdt-like-slic.diff, feature has been
         implemented in upstream differently
       - refreshed local patches
      * do not recommend sharutils for qemu-utils anymore (Closes: #820449)
      * typo fix in qemu-system-misc description (Closes: #822883)
      * allow qemu-debootstrap to create mips64el chroot (Closes: #817234)
    
     -- Michael Tokarev <email address hidden>  Wed, 18 May 2016 14:44:14 +0300
  • qemu (1:2.5+dfsg-5) unstable; urgency=medium
    
      * fix misspellings in previous debian/changelog entry
      * e1000-eliminate-infinite-loops-on-out-of-bounds-start-CVE-2016-1981.patch
        (Closes: #812307, CVE-2016-1981)
      * hmp-fix-sendkey-out-of-bounds-write-CVE-2015-8619.patch
        (Closes: #809237, CVE-2015-8619)
      * use `command -v' instead of `type' to check for command existance
    
     -- Michael Tokarev <email address hidden>  Thu, 28 Jan 2016 18:39:21 +0300
  • qemu (1:2.5+dfsg-4) unstable; urgency=medium
    
      * change misspelling of won't in NEWS (lintian)
      * two patches from upstream to enable sigaltstack syscal (linux-user)
        (Closes: #805826)
      * word-wrapped last entry in debian/changelog
      * use type to find out whenever update-binfmts is available
      * fw_cfg-add-check-to-validate-current-entry-value-CVE-2016-1714.patch
        (Partial) patch targetted 2.3 which fixes the read side of the issue
        (Closes: CVE-2016-1714)
      * i386-avoid-null-pointer-dereference-CVE-2016-1922.patch
        (Closes: #811201, CVE-2016-1922)
    
     -- Michael Tokarev <email address hidden>  Thu, 21 Jan 2016 13:06:06 +0300
  • qemu (1:2.5+dfsg-3) unstable; urgency=high
    
      [ Aurelien Jarno ]
      * debian/copyright: fix a spelling error reported by lintian: dependecy -> dependency.
    
      [ Michael Tokarev ]
      * net-vmxnet3-avoid-memory-leakage-in-activate_device-CVE-2015-8567-CVE-2015-8568.patch
        (Closes: #808145, CVE-2015-8567, CVE-2015-8568)
      * scsi-initialise-info-object-with-appropriate-size-CVE-2015-8613.patch
        (Closes: #809232, CVE-2015-8613)
      * net-rocker-fix-an-incorrect-array-bounds-check-CVE-2015-8701.patch
        (Closes: #809313, CVE-2015-8701)
    
     -- Michael Tokarev <email address hidden>  Sun, 10 Jan 2016 10:59:46 +0300
  • qemu (1:2.5+dfsg-2) unstable; urgency=high
    
      * ehci-make-idt-processing-more-robust-CVE-2015-8558.patch
        (Closes: #808144, CVE-2015-8558)
      * virtio-9p-use-accessor-to-get-thread_pool.patch (Closes: #808357)
      * two upstream patches from xsa-155 fixing unsafe shared memory access in xen
        (Closes: #809229, CVE-2015-8550)
      * net-ne2000-fix-bounds-check-in-ioport-operations-CVE-2015-8743.patch
        (Closes: #810519, CVE-2015-8743)
      * ide-ahci-reset-ncq-object-to-unused-on-error-CVE-2016-1568.patch
        (Closes: #810527, CVE-2016-1568)
      * changed build-depends from libpng12-dev to libpng-dev (Closes: #810205)
    
     -- Michael Tokarev <email address hidden>  Sat, 09 Jan 2016 21:40:43 +0300
  • qemu (1:2.5+dfsg-1) unstable; urgency=medium
    
      * new upstream release
        (Closes: #801158)
        Closes: #806373 CVE-2015-8345
        Closes: #806742 CVE-2015-7504
        Closes: #806741 CVE-2015-7512
        Closes: #808131 CVE-2015-7549
        Closes: #808130 CVE-2015-8504
      * adopt for the new upstream:
       - removed patches which are upstream now
       - build-depend on libcacard-dev and stop requiring libtool
       - removed libcacard refs from debian/qemu-system-common.docs
       - moved qmp docs out of subdir following upstream
       - removed pc-bios/vgabios-virtio.bin
      * enable new linux-user target: tilegx
      * install qemu-ga manpage
      * install ivshmem-server and ivshmem-client to qemu-utils
      * stop using cylinders/heads/sectors for sfdisk
        in qemu-make-debian-root (Closes: #785470)
      * modify qemu-make-debian-root to use some current tools
        (this simplifies things, removes usage of uudecode)
        (usefulness of this utility is questionable anyway)
    
     -- Michael Tokarev <email address hidden>  Wed, 16 Dec 2015 20:00:04 +0300
  • qemu (1:2.4+dfsg-5) unstable; urgency=medium
    
      * trace-remove-malloc-tracing.patch from upstream.
        (Closes: #802633)
      * stop building libcacard, as it is now in its own separate
        source package and has been removed from upstream qemu in 2.5.
        Here we just stop producing libcacard binaries, but still use
        embedded libcacard source to link with it statically.  In 2.5
        we will switch to external libcacard. (Closes: #805410)
    
     -- Michael Tokarev <email address hidden>  Sun, 29 Nov 2015 12:22:52 +0300
  • qemu (1:2.4+dfsg-4) unstable; urgency=medium
    
      * applied 3 patches from upstream to fix virtio-net
        possible remote DoS (Closes: #799452 CVE-2015-7295)
      * remove now-unused /etc/qemu too (Closes: #797608)
    
     -- Michael Tokarev <email address hidden>  Thu, 08 Oct 2015 20:30:03 +0300
  • qemu (1:2.4+dfsg-3) unstable; urgency=high
    
      * ne2000-add-checks-to-validate-ring-buffer-pointers-CVE-2015-5279.patch
        fix for Heap overflow vulnerability in ne2000_receive() function
        (Closes: #799074 CVE-2015-5279)
      * ne2000-avoid-infinite-loop-when-receiving-packets-CVE-2015-5278.patch
        (Closes: #799073 CVE-2015-5278) 
      * some binfmt reorg:
       - extend aarch64 to include one more byte as other arches do
       - set OSABI mask to 0xfc for i386, ppc*, s390x, sparc*, to recognize
         OSABI=3 (GNU/Linux) in addition to NONE/SysV
         (Closes: #784605 #794737)
       - tighten sh4 & sh4eb, fixing OSABI mask to be \xfc not 0
    
     -- Michael Tokarev <email address hidden>  Tue, 15 Sep 2015 19:30:18 +0300
  • qemu (1:2.4+dfsg-2) unstable; urgency=high
    
      * Add e1000-avoid-infinite-loop-in-transmit-CVE-2015-6815.patch.
        CVE-2015-6815: net: e1000 infinite loop issue in processing transmit
        descriptor.  (Closes: #798101 CVE-2015-6815)
      * Add ide-fix-ATAPI-command-permissions-CVE-2015-6855.patch.
        CVE-2015-6855: ide: qemu allows arbitrary commands to be sent to an ATAPI
        device from guest, while illegal comands might have security impact,
        f.e. WIN_READ_NATIVE_MAX results in divide by zero error.
        (Closes: CVE-2015-6855)
    
     -- Michael Tokarev <email address hidden>  Fri, 11 Sep 2015 19:54:07 +0300
  • qemu (1:2.4+dfsg-1a) unstable; urgency=medium
    
      * new upstream (2.4.0) release
        Closes: #795461, #793811, #794610, #795087, #794611, #793388
        CVE-2015-3214 CVE-2015-5154 CVE-2015-5165 CVE-2015-5745
        CVE-2015-5166 CVE-2015-5158
        Closes: #793817
      * removed all upstreamed patches
      * remove --enable-vnc-ws option (not used anymore)
      * update mjt-set-oem-in-rsdt-like-slic.diff
      * vnc-fix-memory-corruption-CVE-2015-5225.patch from upstream
        Closes: #796465 CVE-2015-5225
      * remove now-unused /etc/qemu/target-x86_64.conf
    
     -- Michael Tokarev <email address hidden>  Mon, 31 Aug 2015 16:28:08 +0300
  • qemu (1:2.4+dfsg-1) UNRELEASED; urgency=medium
    
      * new upstream (2.4.0) release (Closes: CVE-2015-3214 #795461,
        CVE-2015-5154 #793811, CVE-2015-5165 #794610, CVE-2015-5745 #795087,
        CVE-2015-5166 #794611, CVE-2015-5158 #793388)
        (Closes: #793817)
      * removed all upstreamed patches
      * remove --enable-vnc-ws option (not used anymore)
      * update mjt-set-oem-in-rsdt-like-slic.diff
      * vnc-fix-memory-corruption-CVE-2015-5225.patch from upstream
        (Closes: CVE-2015-5225 #796465)
      * remove now-unused /etc/qemu/target-x86_64.conf
    
     -- Michael Tokarev <email address hidden>  Mon, 31 Aug 2015 12:29:44 +0300
  • qemu (1:2.3+dfsg-6a) unstable; urgency=medium
    
      * fix d/copyright leftover in previous upload
    
     -- Michael Tokarev <email address hidden>  Thu, 11 Jun 2015 20:31:07 +0300
  • qemu (1:2.3+dfsg-6) unstable; urgency=high
    
      * pcnet-force-buffer-access-to-be-in-bounds-CVE-2015-3209.patch
        from upstream (Closes: #788460 CVE-2015-3209)
    
     -- Michael Tokarev <email address hidden>  Thu, 11 Jun 2015 20:03:40 +0300
  • qemu (1:2.3+dfsg-5) unstable; urgency=high
    
      * slirp-use-less-predictable-directory-name-in-tmp-CVE-2015-4037.patch
        (Closes: CVE-2015-4037)
      * 11 patches for XEN PCI pass-through issues
        (Closes: #787547 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106)
      * kbd-add-brazil-kbd-keys-*.patch, adding two keys found on Brazilian
        keyboards (Closes: #772422)
    
     -- Michael Tokarev <email address hidden>  Wed, 03 Jun 2015 17:18:58 +0300
  • qemu (1:2.3+dfsg-4) unstable; urgency=medium
    
      * rules.mak-force-CFLAGS-for-all-objects-in-DSO.patch:
        patch from upstream to fix FTBFS on some arches
      * libcacard-dev: depend on libnss3-dev (Closes: #785798)
      * libcacard-dev: do not depend on pkg-config
    
     -- Michael Tokarev <email address hidden>  Wed, 20 May 2015 14:21:09 +0300
  • qemu (1:2.3+dfsg-3) unstable; urgency=high
    
      * fdc-force-the-fifo-access-to-be-in-bounds-CVE-2015-3456.patch
        (Closes: CVE-2015-3456)
      * fix the OSABI binfmt mask for x86_64 arch, to actually fix #763043.
        Original fix didn't work, because "someone" forgot arithmetics.
        (Really Closes: #763043)
      * align binfmt magics/masks to be in single column
    
     -- Michael Tokarev <email address hidden>  Tue, 12 May 2015 23:02:29 +0300
  • qemu (1:2.1+dfsg-11) unstable; urgency=medium
    
    
      * bump epoch and reupload to cancel 2.2+dfsg-1exp upload
        mistakenly done to unstable.  No other changes.
    
     -- Michael Tokarev <email address hidden>  Wed, 10 Dec 2014 00:52:28 +0300
  • qemu (2.1+dfsg-10) unstable; urgency=medium
    
    
      * make (debian-specific) x86 data path (with seabios and ipxe
        in it) non-x86-specific, since other arches use firmware
        files too (Closes: #772127)
      * add seabios to Recommends to qemu-system-misc, qemu-system-mips,
        qemu-system-ppc and qemu-system-sparc packages, because these
        packages contains emulators using vgabios which is part of
        seabios package (#772127).
      * add ipxe-qemu to Recommends to qemu-system-misc, qemu-system-arm,
        qemu-system-mips, qemu-system-ppc, qemu-system-sparc packages,
        because these packages contains emulators using network boot
        roms (#772127), in a similar way.
    
     -- Michael Tokarev <email address hidden>  Tue, 09 Dec 2014 13:47:36 +0300
  • qemu (2.1+dfsg-9) unstable; urgency=high
    
    
      * apply upstream patches for CVE-2014-8106
        (cirrus: insufficient blit region checks)
        (Closes: #772025 CVE-2014-8106)
    
     -- Michael Tokarev <email address hidden>  Thu, 04 Dec 2014 00:10:43 +0300
  • qemu (2.1+dfsg-8) unstable; urgency=low
    
    
      [ Michael Tokarev ]
      * add Built-Using control field for qemu-user-static package:
        take contents of qemu-user ${shlibs:Depends} and transform it
        into list of source packages with versions.  (Closes: #768926)
      * run remove-alternatives in qemu-system.postinst (the metapkg)
        too, not only in qemu-system-XX.postinst, to handle upgrades
        from wheezy (Closes: #768244)
      * several fixes for debian/qemu-user.1 manpage.  It needs more
        work, but at least some easy and obvious errors are fixed now.
        (Closes: #763841)
      * migration-fix-parameter-validation-on-ram-load.patch from upstream
        (Closes: #769451 CVE-2014-7840)
      * fix x86_64 binfmt mask to allow more values in ELF_OSABI field
        (byte7).  Current gcc/binfmt sometimes produces binaries with
        this field set to 3 (OSABI_GNU) not 0 (OSABI_SYSV) as used to be.
        Set mask to 0xfb not 0xff here, to allow 0 (traditional SYSV),
        1 (HPUX), 2 (NETBSD) or 3 (GNU).  This lets 2 more types than
        necessary, but qemu will reject wrong types so no harm is done.
        Some other binfmts ignore this field completely (with mask=0).
        Maybe some day we'll have 2 different binfmt registrations for
        the 2 different ABI types.  (Closes: #763043)
      * usb-host-fix-usb_host_speed_compat-tyops.patch -- fix host usb devices
        attach, without this patch many USB devices does not work
      * qdev-monitor-fix-segmentation-fault-on-qdev_device_h.patch - trivial
        patch from upstream to fix segfault in -device foo,help (Closes: #770880)
    
      [ Aurelien Jarno ]
      * Add tcg-mips-fix-store-softmmu-slow-path.patch from upstream to fix
        TCG support on mips/mipsel hosts (Closes: #769470).
    
      [ Ian Campbell ]
      * Backport patch to fix unmapping of persistent grants in the Xen qdisk
        backend (Closes: #770468).
    
     -- Michael Tokarev <email address hidden>  Thu, 27 Nov 2014 18:32:45 +0300
  • qemu (2.1+dfsg-7) unstable; urgency=high
    
    
      * urgency is high due to 2 security fixes
        (one current and one forgotten in previous release)
        and because of possible data corruption bugfix
      * vnc-sanitize-bits_per_pixel-from-the-client-CVE-2014-7815.patch
        from upstream (Closes: CVE-2014-7815)
      * fix spelling mistake in previous changelog entry
      * add two patches from upstream for block/raw-posix.c to work around
        probs in FS_IOC_FIEMAP ioctl and to prefer seek_hole over fiemap.
        This should fix a long-standing ghost data corruption observed
        in various places.
    
     -- Michael Tokarev <email address hidden>  Mon, 03 Nov 2014 18:44:34 +0300
  • qemu (2.1+dfsg-6) unstable; urgency=medium
    
    
      * mention closing of CVE-2014-3615 by 2.1.2 (2.1+dfsg-5)
      * 9p-use-little-endian-format-for-xattr-values.patch (Closes: #755740)
      * mention closing of #760386
      * mention closing of more CVEs by 2.1+dfsg-1
      * recognize ppc64el in qemu-debootstrap (Luca Falavigna) (Closes: #760949)
      * use dpkg-vendor to let derived distros to use our d/rules
      * use /usr/share/dpkg/architecture.mk to get DEB_HOST_* and DEB_BUILD_*
        variables.  This restores cross building support.
      * use /usr/share/dpkg/buildflags.mk for CFLAGS LDFLAGS &Co
      * pass -DVENDOR_{DEBIAN,UBUNTU} to compiler
      * do not treat ppc* and ppc*le as compatible for binfmt registrations
      * mention ACPI SLIC to RSDT id copying if slic table is supplied,
        thank you Tim Small for the patch (Closes: #765075)
      * apply 5 patches from upstream to fix a security issue in
        vmware-vga (Closes: #765496 CVE-2014-3689)
      * apply two patche from upstream to make qemu to work with samba4
        (Closes: #747636)
    
     -- Michael Tokarev <email address hidden>  Mon, 03 Nov 2014 18:07:48 +0300
  • qemu (2.1+dfsg-5) unstable; urgency=medium
    
    
      * upstream bugfix release v2.1.2
        (Closes: #762532 CVE-2014-3640 CVE-2014-5388)
      * Add x32 to the list of supported architectures
        (patch by Thorsten Glaser)
      * fix wrong reference in kvm.1 (Closes: #761137)
      * removed patches (applied upstream):
        l2tp-linux-only.patch
        ide-only-constrain-read_write-requests-to-drive-size.diff
        pc-reserve-more-memory-for-acpi.patch
    
     -- Michael Tokarev <email address hidden>  Fri, 26 Sep 2014 17:43:26 +0400
  • qemu (2.1+dfsg-4) unstable; urgency=medium
    
    
      * mention libnuma-dev but not enable for now
      * 9p-readdir.patch: fix readdir in 9p mapped mode (Closes: #755738)
      * pc-reserve-more-memory-for-acpi.patch: fix linux -kernel not working
        with new qemu (Closes: #759522)
      * qemu-options-add-missing--drive-discard-option-to-cmdline-help.diff -
        documentation fix
      * mention that 2.1 closed #754336.
      * move qemu-bridge-helper to /usr/lib/qemu/ subdir (lintian)
      * debian/binfmt-update-in (Serge Hallyn):
        - don't run in a container
        - add ppc64le as target
      * add apport hook from ubuntu package (ubuntu-only for now)
    
     -- Michael Tokarev <email address hidden>  Sun, 31 Aug 2014 09:32:59 +0400
  • qemu (2.1+dfsg-3) unstable; urgency=medium
    
    
      * set SHELL = /bin/sh -e, so that more complex shell constructs
        in d/rules will fail if any command fail inside
      * check for pipe2() being a stub too, like utimensat() etc
      * build-depend on gnutls-dev, not libgnutls*-dev, so the
        buuld system will pick default gnutls impl (so it works for
        backports and future versions)
      * build-depend on libjpeg-dev not libjpeg8-dev
      * minimum version of seabios is 1.7.5 (Closes: #757958)
      * ide-only-constrain-read_write-requests-to-drive-size.diff
        (Closes: #757927)
      * added use-arch-data-path.patch, to be able to search for binary
        blobs in several (arch-specific) data directories instead of just one.
      * removed all blob/firmware symlinks from qemu-system-x86, using
        arch-specific datapath instead (/usr/share/seabios:/usr/lib/ipxe/qemu)
      * removed retry-pxe-after-efi.patch and depend on ipxe-qemu which
        introduced efi boot roms.  qemu should not try to load "wrong"
        ROM, or else migration will fail due to rom size mismatch.
      * include /usr/lib/qemu-bridge-helper binary, but not make it setuid
        due to security concerns outlined in #691138 (Closes: #691138)
      * make vnc-jpeg not debian-specific
      * install kvm-spice symlinks on ubuntu
    
     -- Michael Tokarev <email address hidden>  Thu, 14 Aug 2014 14:30:24 +0400
  • qemu (2.1+dfsg-2) unstable; urgency=medium
    
    
      * l2tp-linux-only.patch: fix FTBFS on kfreebsd
      * imx_timer_TIMER_MAX_clash.diff: fix ITIMER_MAX definition clash
      * remove kfreebsd hack which disabled usb support on this platform
        since qemu-1.3: it isn't needed anymore
    
     -- Michael Tokarev <email address hidden>  Sat, 02 Aug 2014 00:51:04 +0400
  • qemu (2.1+dfsg-1) unstable; urgency=medium
    
    
      * new upstream release
        Closes: #739589 CVE-2014-3461
        Closes: #735618
      * versioned build-depend on libiscsi-dev (>>1.9.0~)
      * added ppc64le user target
      * fix description of qemu-user-binfmt wrt "empty" (Closes: #755988)
      * use /usr/share/dpkg/pkg-info.mk instead of inventing the same locally
      * added debian/get-orig-source.sh (and a d/rules target)
      * set ubuntu vcs branch to ubuntu-utopic
      * binfmt-update-in: make sure to filter out compat arches
    
     -- Michael Tokarev <email address hidden>  Fri, 01 Aug 2014 20:06:22 +0400
  • qemu (2.0.0+dfsg-7) unstable; urgency=medium
    
    
      * clarify description of qemu-user-binfmt a bit 
      * build-depend on acpica-tools (iasl) in order to rebuild .dsl files
      * remove qemu-keymaps package, since it is not used by other tools
        anymore, and ship keymaps in qemu-system-common.
      * remove (and break by qemu-system-common) old qemu-common for
        ubuntu too, since it was transitional-to-qemu-keymaps pkg
      * reorganize docs (Closes: #751376):
       - do not ship docs in qemu (meta)package, except of qemu-doc.html
       - ship most of docs/* in qemu-system-common in /usr/share/doc/q-s-c/
       - make symlinks from /usr/share/doc/qemu-system-foo/common to ../q-s-c/
       - ship doc-base file for qemu-system-common too (for qemu-doc.html)
       - rename qemu.1 manpage to qemu-system.1
      * qemu-user-static & qemu-user-binfmt conflict with each other, not break.
      * mention that qemu-user-binfmt is empty package (lintian)
    
     -- Michael Tokarev <email address hidden>  Thu, 24 Jul 2014 16:51:16 +0400
  • qemu (2.0.0+dfsg-6) unstable; urgency=medium
    
    
      * build-depend on libgnutls28-dev not libgnutls-dev
      * added qcow1 block format validation patches from upstream:
       block-fmt-validation/qcow1-check-maximum-cluster-size.patch
       block-fmt-validation/qcow1-stricter-backing-file-length-check.patch
       block-fmt-validation/qcow1-validate-image-size-CVE-2014-0223.patch
       block-fmt-validation/qcow1-validate-L2-table-size-CVE-2014-0222.patch
        (Finally closes: #742730, CVE-2014-0222, CVE-2014-0223)
    
     -- Michael Tokarev <email address hidden>  Fri, 23 May 2014 12:12:38 +0400
  • qemu (2.0.0+dfsg-5) unstable; urgency=medium
    
    
      * re-re-enable rbd (ceph) support again (Closes: #689239)
        Should watch for breakage and for runtime dependencies closely from now on.
      * fix qemu-kvm package description (stop mentioning it is transitional)
      * move all binfmt handling from many files to d/binfmt-update-in
      * introduce qemu-user-binfmt (dummy) package to support binfmt
        registration of qemu-user binaries (Closes: #677529)
    
     -- Michael Tokarev <email address hidden>  Tue, 13 May 2014 21:15:48 +0400
  • qemu (2.0.0+dfsg-4) unstable; urgency=medium
    
    
      * suggests ovmf, not recommends it as it is not in -main (Closes: #745698)
      * cputlb-fix-regression-with-TCG-interpreter.patch (Closes: #744342)
    
     -- Michael Tokarev <email address hidden>  Wed, 30 Apr 2014 10:03:55 +0400
  • qemu (2.0.0+dfsg-3) unstable; urgency=low
    
    
      * 2.0.0 closed #744213 (CVE-2013-4544) and #745157 (CVE-2014-2894)
      * mjt-set-oem-in-rsdt-like-slic.diff: apply a (hackish) patch to simplify
        running OEM versions of windows vista and 7 in qemu using SLIC table
        from current hardware.
      * set VENDOR in d/rules
      * added forgotten qemu-kvm Pre-Depends field
      * switch back from sdl1 to sdl2, as the latter apparently isn't ready yet
        (Closes: #745269)
    
     -- Michael Tokarev <email address hidden>  Mon, 21 Apr 2014 12:34:03 +0400
  • qemu (2.0.0+dfsg-2) unstable; urgency=medium
    
    
      * resurrect 02_kfreebsd.patch, -- without it qemu FTBFS on current
        Debian kFreeBSD system still.
    
     -- Michael Tokarev <email address hidden>  Thu, 17 Apr 2014 22:04:38 +0400
  • qemu (2.0.0+dfsg-1) unstable; urgency=low
    
    
      * 2.0 actually does not close #739589,
        remove it from from last changelog entry
      * mention closing of #707629 by 2.0
      * mention a list of CVE IDs closed by #742730
      * mention closing of CVE-2013-4377 by 1.7.0-6
      * do not set --enable-uname-release=2.6.32 for qemu-user anymore
        (was needed for old ubuntu builders)
      * removed 02_kfreebsd.patch: it adds configure check for futimens() and
        futimesat() syscalls on FreeBSD, however futimens() appeared in FreeBSD
        5.0, and futimesat() in 8.0, and 8.0 is the earliest supported version
      * kmod dependency is linux-any
      * doc-grammify-allows-to.patch: fix some lintian warnings
      * remove alternatives for qemu: different architectures
        aren't really alternatives and never had been 
      * update Standards-Version to 3.9.5 (no changes needed)
      * exec-limit-translation-limiting-in-address_space_translate-to-xen.diff -
        fixes windows BSOD with virtio-scsi when upgrading from 1.7.0 to 1.7.1
        or 2.0, among other things
    
     -- Michael Tokarev <email address hidden>  Thu, 17 Apr 2014 18:27:15 +0400
  • qemu (1.7.0+dfsg-9) unstable; urgency=medium
    
    
      * remove rbd/rados/ceph support *again*, till they'll actually provide
        some symbol/library version mechanism
        (Closes:  #744364, Reopens: #729961, #689239)
    
     -- Michael Tokarev <email address hidden>  Sun, 13 Apr 2014 18:49:46 +0400
  • qemu (1.7.0+dfsg-8) unstable; urgency=low
    
    
      * fix a brown-paper-bag bug in the previous upload
    
     -- Michael Tokarev <email address hidden>  Fri, 11 Apr 2014 22:01:32 +0400
  • qemu (1.7.0+dfsg-7) unstable; urgency=high
    
    
      * fix guest-triggerable buffer overrun in virtio-net device
        (Closes: #744221 CVE-2014-0150)
    
     -- Michael Tokarev <email address hidden>  Fri, 11 Apr 2014 20:27:16 +0400
  • qemu (1.7.0+dfsg-6) unstable; urgency=medium
    
    
      * make ceph (rbd) support linux-only, since it exists only on linux
    
     -- Michael Tokarev <email address hidden>  Sat, 05 Apr 2014 13:59:48 +0400
  • qemu (1.7.0+dfsg-5) unstable; urgency=medium
    
    
      * remove OVMF.fd symlink added in -4, it belongs to ovmf (Closes: #741494)
      * qemu-debootstrap: add support for arm64 architecture (Closes: #740112)
      * mention closing of #725176 by 1.7.0
    
     -- Michael Tokarev <email address hidden>  Thu, 13 Mar 2014 06:21:01 +0400
  • qemu (1.7.0+dfsg-4) unstable; urgency=medium
    
    
      [ Michael Tokarev ]
      * 1.7.1 stable upstream release (Closes: #719633)
      * implement-posix-timers.diff from upstream (Closes: #732258)
      * address_space_translate-do-not-cross-page-boundaries.diff -
        upstream bugfix for xen
      * break libvirt << 1.2, not just 1.0, we need 1.2+ after qemu-1.6.
      * add linux-user-fixed-s390x-clone-argument-order.patch (Closes: #739800)
      * re-enable cepth (rbd) support (Closes: #729961, #689239)
    
      [ Steve Langasek ]
      * (from Ubuntu) add symlink for OVMF.fd, which is now available in Debian
        non-free.
      * libusbredir is enabled in Ubuntu too, so sync debian/control.
      * Enable building for ppc64el (in both Debian and Ubuntu): Debian does not
        have a ppc64el port yet, but qemu builds out of the box there so it's
        safe/appropriate to enable.
      * Merge in Ubuntu-specific (and Ubuntu-tagged) debian/control changes.
      * Enable building for arm64; the arm64 target is not yet merged, but the
        package doesn't need arm64 target support to build for an arm64 host.
    
      [ Riku Voipio ]
      * control: build-depend on python:any (change originally made
        in Aug-2013 but reverted by mjt later)
    
     -- Michael Tokarev <email address hidden>  Wed, 12 Mar 2014 18:34:03 +0400
  • qemu (1.7.0+dfsg-3) unstable; urgency=low
    
    
      * qemu-kvm: fix versions for Breaks/Replaces/Depends on qemu-system-x86
      * qemu-system-ppc: depend on openbios-ppc >= 1.1+svn1229 to fix boot issues
      * qemu-system-sparc: depend on openbios-sparc >= 1.1+svn1229 too
      * remove unused lintian overrides for qemu-user from qemu (meta)package
      * qemu-system-*: depend on unversioned qemu-keymaps and qemu-system-common
        packages (no particular version of any is hard-required)
      * remove debian/README.source (was from quilt)
      * add myself to debian/copyright
      * reorder d/control to have Recommends:/Suggests: closer to Depends.
      * rename d/control to d/control-in and add a d/rules rule to build it
        based on ${VENDOR}
      * allow different content in d/control for debian/ubuntu
      * added debian/README-components-versions
      * fixed qemu-armeb binfmt (Closes: #735078)
      * added powerpcspe host arch (Closes: #734696)
      * do not check for presence of update-alternatives which is part of dpkg
        (Closes: #733222)
      * do not call update-alternative --remove from postrm:remove
        (lintian complains about this)
      * add efi netrom links.  This requires new ipxe-qemu.
    
     -- Michael Tokarev <email address hidden>  Thu, 16 Jan 2014 15:17:46 +0400
  • qemu (1.7.0+dfsg-2) unstable; urgency=low
    
    
      * switch from vgabios to seavgabios
      * rework update-alternatives handling for qemu-system (Closes: #722914)
      * mention closing of #326886, #390444, #706237 and CVE-2013-4375 for 1.7.0
      * rearrange libvte-dev build-dependency to come together with gtk, and
        comment it out (since gtk frontend isn't being built)
      * re-introduce qemu-kvm package with just a wrapper (/usr/bin/kvm)
        and make this wrapper to force kvm mode (Closes: #727762)
      * use less strict dependency on qemu-keymaps
      * added fix-smb-security-share.patch by Michael Büsch (Closes: #727756)
      * added move-ncalrpc-dir-to-tmp.patch by Michael Büsch (Closes: #728876)
    
     -- Michael Tokarev <email address hidden>  Fri, 29 Nov 2013 00:16:44 +0400
  • qemu (1.7.0+dfsg-1) unstable; urgency=low
    
    
      * new upstream release (Closes: #724758)
      * tweak kvm loading script to not load module for 3.4+ kernel
        (kernel autoloads kvm modules since 3.4) (Closes: #717811)
      * mention closing of #721713, #710971, #674201
      * refresh use-fixed-data-path.patch to contain just the min. changes
      * fix pxe-eepro100.rom link (never worked in qemu due to wrong name)
      * remove old $Id$ line from debian/rules
    
     -- Michael Tokarev <email address hidden>  Thu, 28 Nov 2013 03:14:21 +0400
  • qemu (1.6.0+dfsg-2) unstable; urgency=low
    
    
      * Build-depend in seccomp again once it is in -testing
      * 1.6.1 upstream bugfix release (Closes: #725944)
      * fix "allows [one] to" in qemu-ga description
      * fix descriptions for qemu-system and qemu-system-common packages
    
     -- Michael Tokarev <email address hidden>  Fri, 11 Oct 2013 01:15:48 +0400
  • qemu (1.6.0+dfsg-1) unstable; urgency=low
    
    
      [ Michael Tokarev ]
      * final upstream v1.6.0 (Closes: #718180, #714273, #605525, #701855)
      * removed configure-explicitly-disable-virtfs-if-softmmu=no.patch
      * mention closing of #717724 by 1.6
      * mention closing of #710971 by 1.5 (which disabled gtk support)
    
      [ Riku Voipio ]
      * - set --cross-prefix in debian/rules when cross-compiling
    
     -- Michael Tokarev <email address hidden>  Mon, 02 Sep 2013 15:18:49 +0400
  • qemu (1.5.0+dfsg-5) unstable; urgency=low
    
    
      * new upstream 1.5.1 stable/bugfix release (as qemu-1.5.1.diff)
        removed qemu_openpty_raw-helper.patch (included upstream)
      * configure-explicitly-disable-virtfs-if-softmmu=no.patch -- do not
        build virtfs-proxy-helper stuff if not building system emulator
        (fix FTBFS on s390)
      * disable gtk ui and build dependencies, as it adds almost nothing
        compared with sdl (well, except bugs and limitations), and has
        lots of additional dependencies
      * remove obsolete /etc/init.d/qemu-kvm (Closes: #712898)
      * fix versions of obsolete qemu-kvm conffiles to be removed
      * provide manpage for obsolete kvm (Closes: #716891, #586973)
      * add --daemonize option to the guest-agent startup script (Closes: #715502)
      * clarify what qemu-guest-agent does (Closes: #714270) and provide
        its json schema as a doc
    
     -- Michael Tokarev <email address hidden>  Tue, 23 Jul 2013 22:39:54 +0400
  • qemu (1.5.0+dfsg-4) unstable; urgency=medium
    
    
      * urgency is medium to make it go faster because, on one hand, we've
        been in unstable for quite a bit longer than needed already and
        have nothing but (build) fixes in there, but on the other hand
        we're holding migration of other packages which are waiting for
        us, again, for too long already
      * added qemu_openpty_raw-helper.patch - a cleanup patch submitted upstream
        which removes #include <termios.h> from common header and hence works
        around FTBFS problem on debian sparc where somehow, <termios.h> conflicts
        with <linux/termio.h>.
    
     -- Michael Tokarev <email address hidden>  Thu, 06 Jun 2013 01:50:32 +0400
  • qemu (1.5.0+dfsg-3) unstable; urgency=low
    
    
      * fix sections: misc => otherosfs
      * remove obsolete conffiles (kvm-ifup, kvm-ifdown, target-x86_64.conf)
        from /etc/kvm/ in qemu-kvm (Closes: #710328)
      * rework debian/rules a bit, to build various bits depending on
        which packages are requested, not depending on ad-hoc host/arch
        logic
      * do not fail at install if kvm module loading failed on x86 or
        if modprobe isn't installed (Closes: #710496)
      * also suggest kmod to be able to load x86 kvm modules
      * suggest sgabios for qemu-system-x86 and put a symlink to sgabios.bin
        (Closes: #696985)
      * add rules to build just one of arch/indep parts, to make
        buildd log scanner happier (E-binary-arch-produces-all)
      * use verbose build by default (V=1) and let it to be overridden
    
     -- Michael Tokarev <email address hidden>  Sun, 02 Jun 2013 01:49:47 +0400
  • qemu (1.5.0+dfsg-2) unstable; urgency=low
    
    
      * merged development history of wheezy and experimental branches.
        Now the history is ordered by version, but is not chronological.
        As a base we now have wheezy (1.1.2+dfsg-6a) version.
      * removed trailing whitespaces from changelog file
      * run dh_installinit properly (Closes: #709199)
      * run dh_installman (Closes: #709241)
      * remove build-dependendy on texi2html, upstream switched to makeinfo
    
     -- Michael Tokarev <email address hidden>  Tue, 28 May 2013 10:48:41 +0400
  • qemu (1.5.0+dfsg-1) unstable; urgency=low
    
    
      * update to 1.5.0 (Closes: #707732)
      * upload to unstable
      * mention that 1.5 closes #697641 and #705544
      * bump dependency on openbios (openbios-ppc for qemu-system-ppc,
        openbios-sparc for qemu-system-sparc) from 1.0+svn1060 to 1.1
        (Closes: #707727)
      * bump dependency on seabios to be >= 1.7.2-2
      * add retry-pxe-after-efi.patch to try pxe-XXXX.rom after unsuccessfully
        trying efi-XXXX.rom - this is for NICs, until pxe-qemu package will be
        able to provide necessary efi-XXXX.rom files.
      * add (versioned) dependency on libusb-1.0 now when the right version
        is available in debian
      * use-fixed-data-path.patch: do not try to derive data path from
        executable location, always use /usr/share/qemu
    
     -- Michael Tokarev <email address hidden>  Tue, 21 May 2013 00:49:47 +0400
  • qemu (1.1.2+dfsg-6a) unstable; urgency=low
    
    
      * reupload to remove two unrelated files slipped in debian/
    
     -- Michael Tokarev <email address hidden>  Mon, 18 Mar 2013 10:09:37 +0400
  • qemu (1.1.2+dfsg-6) unstable; urgency=low
    
    
      * another bugfix for USB, upstream from early days of past-1.1.
        usb-split-endpoint-init-and-reset.patch.  With certain redirected
        to guest USB devices, qemu process may crash:
    
         usb_packet_complete: Assertion `((&ep->queue)->tqh_first) == p' failed.
    
        The patch fixes this by de-coupling reset and complete paths.
        Big thanks goes to Joseph Price who found the fix by doing a
        reverse git bisection.
        (Closes: #701926)
    
     -- Michael Tokarev <email address hidden>  Mon, 18 Mar 2013 09:07:24 +0400
  • qemu (1.1.2+dfsg-5) unstable; urgency=low
    
    
      * fix USB regression introduced in 1.1 (Closes: #683983)
        uhci-don-t-queue-up-packets-after-one-with-the-SPD-flag-set.patch
        Big thanks to Peter Schaefer (https://bugs.launchpad.net/bugs/1033727)
        for the help identifying the fix.
    
     -- Michael Tokarev <email address hidden>  Mon, 14 Jan 2013 12:20:29 +0400
  • qemu (1.1.2+dfsg-4) unstable; urgency=medium
    
    
      * linux-user-fix-mips-32-on-64-prealloc-case.patch (Closes: #668658)
      * e1000-discard-oversized-packets-based-on-SBP_LPE.patch: the second
        half of the fix for CVE-2012-6075. (Finally Closes: #696051)
    
     -- Michael Tokarev <email address hidden>  Wed, 09 Jan 2013 23:05:17 +0400
  • qemu (1.1.2+dfsg-3) unstable; urgency=low
    
    
      * add build-dependency on libcap-dev [linux-any] to enable virtfs support
        which has been dropped in 1.1. (Closes: #677654)
      * intel_hda-do-not-call-msi_reset-when-only-device-state-needs-resetting.patch
        patch to fix Fixing reset of MSI function in intel-hda virtual device.
        The fix (applied to stable-1.1.1) was partially wrong, as it actually
        added the msi_reset() call to two code paths instead of one as planned.
        Fix this by splitting the function in question into two parts.
        (Closes: #688964)
      * blockdev-preserve-readonly-and-snapshot-states-across-media-changes.patch:
        allow opening of read-only cdrom images/devices (Closes: #686776)
      * ahci-properly-reset-PxCMD-on-HBA-reset.patch: fix windows install on ahci
        (Closes: #696052)
      * e1000-discard-packets-that-are-too-long-if-not-SBP-and-not-LPE.patch:
        discard too long rx packets which may overflow guest buffer
        (Closes: #696051)
      * eepro100-fix-network-hang-when-rx-buffers-run-out.patch:
        fix e100 stall (Closes: #696061)
      * fix possible network stalls/slowness in e1000 device emulation:
        net-notify-iothread-after-flushing-queue.patch
        e1000-flush-queue-whenever-can_receive-can-go-from-false-to-true.patch
        (Closes: #696063)
      * fixes-related-to-processing-of-qemu-s-numa-option.patch:
        fixes numa handling (Closes: #691343)
      * qcow2-fix-avail_sectors-in-cluster-allocation-code.patch:
        fixes data corruption in stacked qcow2 (Closes: #695905)
      * qcow2-fix-refcount-table-size-calculation.patch: another possible
        corruption or crash in qcow2 (Closes: #691569)
      * tap-reset-vnet-header-size-on-open.patch: always ensure tap device is
        in known state initially (Closes: #696057)
      * vmdk-fix-data-corruption-bug-in-WRITE-and-READ-handling.patch:
        possible data corruption bug in vmdk image format (Closes: #696050)
    
     -- Michael Tokarev <email address hidden>  Sun, 16 Dec 2012 23:08:40 +0400
  • qemu (1.1.2+dfsg-2) unstable; urgency=low
    
    
      * remove debian/patches/fix-armhf-prctl.patch, it is included
        upstream in 1.1.0 version and is misapplied since 1.1.0~rc3+dfsg-1.
      * drop -jN passing to downstream makes, as it breaks dpkg-buildpackage -j
        and actually breaks build (Closes: #597524 - said to be fixed in 0.14.1
        but was still present)
      * add revert-serial-fix-retry-logic.patch that restores
        old (semi-)working behavour of a virtual serial port.
    
     -- Michael Tokarev <email address hidden>  Wed, 19 Sep 2012 13:54:05 +0400
  • qemu (1.1.2+dfsg-1) unstable; urgency=low
    
    
      [Michael  Tokarev]
      * new upstream stable/bugfix release, fixing a LOT of bugs,
        including CVE-2012-3515 (Closes: #686973, #681985)
      * bump versioned depends of seabios to 1.7.0~, since this version ships
        kvmvapic.bin.
      * ship /usr/share/qemu/qemu-icon.bmp (Closes: #681317)
      * do not build-depend on ceph (librbd-dev librados-dev), since ceph is
        having longstanding issues in wheezy.
      * add tcg_s390-fix-ld_st-with-CONFIG_TCG_PASS_AREG0.patch - upstream fix
        to un-break s390[x] emulation code.  Similar fixes were included for
        other platforms in 1.1.2 changeset.  Without this fix, qemu is basically
        useless on s390.
      * document -netdev option in the manpage, a long-standing omission
        (net-add--netdev-options-to-man-page.patch)
    
      [Vagrant Cascadian]
      * qemu-system: Add symlinks for extboot.bin, kvmvapic.bin and vapic.bin to 
        binaries shipped in seabios. Closes: #678217, #678217.
      * qemu-system: Remove dead link for ne2k_isa.rom, which is not included in 
        ipxe. Closes: #678217. 
      * qemu-system: Bump versioned openbios-sparc and openbios-ppc Depends to 
        1.0+svn1060, to ensure we use at least version which is used by upstream.
        Wheezy already has the right version, but we should not break partial
        upgrades.
    
     -- Michael Tokarev <email address hidden>  Sun, 09 Sep 2012 18:52:57 +0400
  • qemu (1.1.0+dfsg-1) unstable; urgency=low
    
    
      [ Vagrant Cascadian ]
      * New upstream release.
    
      [ Michael Tokarev ]
      * do-not-include-libutil.h.patch - don't include libutil.h&Co when not
        needed.  Fixes FTBFS on kFreebsd with recent libbsd-dev.
      * drop libbsd-dev support on kFreebsd - no longer needed.
      * do not build USB host support on kFreebsd (qemu uses obsolete,
        now removed, USB API).  Use the same hack/technique as FreeBSD
        qemu port does -- changing HOST_USB to "stub" after configure run.
    
     -- Vagrant Cascadian <email address hidden>  Thu, 07 Jun 2012 13:44:26 -0700
  • qemu (1.0.1+dfsg-1) unstable; urgency=low
    
    
      [ Aurelien Jarno ]
      * New upstream stable version:
        - remove debian/patches/fix-malta-i8259
        - remove debian/patches/qemu-ifunc-ppc.patch
        - remove debian/patches/x86-fix-cmpxchg.patch
    
      [ Michael Tokarev ]
      * apply patch to change backticks `` in debian/rules variables
        to $(shell) construct, by Allard Hoeve.  (Closes: #660133)
      * depend on vgabios >= 0.6c-3~ not 0.6c-3, to assist backporting
    
      [ Hector Oron ]
      * Fix prctl syscall (Closes: #656926, #651083). 
    
      [ Vagrant Cascadian ]
      * Update to Standards-Version 3.9.3, no changes necessary.
    
     -- Vagrant Cascadian <email address hidden>  Mon, 05 Mar 2012 13:05:14 -0800
  • qemu (1.0+dfsg-3) unstable; urgency=low
    
    
      [ Aurelien Jarno ]
      * Add a build-depends on libfdt-dev to enable some more emulated machines.
      * Really add binfmt support for s390x.
    
      [ Michael Tokarev ]
      * Depend on ipxe-qemu | ipxe (<< 1.0.0+git-20120202.f6840ba-2)
        after ipxe package split.  This will probably need to be changed
        to just ipxe-qemu once it will be landed properly.
    
      [ Vagrant Cascadian ]
      * Apply patch to use dpkg-buildflags (Closes: #656276). 
        Thanks to Moritz Muehlenhoff. 
    
     -- Vagrant Cascadian <email address hidden>  Mon, 06 Feb 2012 17:56:15 -0800
  • qemu (1.0+dfsg-2) unstable; urgency=low
    
    
      [ Aurelien Jarno ]
      * Add patch from upstream to fix cmpxchg on x86.
      * Add patch to not link user builds with NSS (Closes: #648202).
      * Add binfmt support for s390x.
      * Bump depends on openbios-ppc and openbios-sparc on versions 
        compatible with version 1.0.
      * Build on s390x (Closes: #651048).
    
      [ Vagrant Cascadian ]
      * qemu-make-debian-root: Fix argument processing to handle when both -s and 
        -k are specified. Thanks to Mats Erik Andersson (Closes: #638047).
      * Add Patch from upstream to fix regression on malta with i8259 interrupts.
      * qemu-debootstrap: Add support for armhf and s390x. 
      * debian/rules: remove config.log in the clean target. 
      * qemu-make-debian-root: Use debootstrap's minbase variant, instead of a 
        long list of excludes.
    
     -- Vagrant Cascadian <email address hidden>  Mon, 09 Jan 2012 16:01:17 -0800
  • qemu (0.15.1+dfsg-3) unstable; urgency=low
    
    
      * Add patch from upstream to fix FTBFS on ia64. 
    
     -- Vagrant Cascadian <email address hidden>  Fri, 09 Dec 2011 23:48:21 -0800
  • qemu (0.15.1+dfsg-2) unstable; urgency=low
    
    
      * Add patch that fixes a buffer overrun (CVE-2011-4111). 
      * Enable spice support on amd64:
        - Add Build-Depends: libspice-server-dev, libspice-protocol-dev
      * debian/rules: Use dh_prep instead of "dh_clean -k", which is deprecated. 
    
     -- Vagrant Cascadian <email address hidden>  Mon, 28 Nov 2011 20:34:50 -0800
  • qemu (0.15.1+dfsg-1) unstable; urgency=low
    
    
      * New upstream version.
    
     -- Vagrant Cascadian <email address hidden>  Sun, 06 Nov 2011 10:37:31 -0800
  • qemu (0.15.0+dfsg-1) unstable; urgency=low
    
    
      * New upstream version.
      * Install new qemu-system, qemu-user and qemu-user-static variants: 
        lm32, microblazeel, s390x, unicore32
      * Patch from upstream to set QEMU_INCLUDES before QEMU_CFLAGS.
      * Update debian/watch to check http://qemu.org/download.
    
     -- Vagrant Cascadian <email address hidden>  Mon, 03 Oct 2011 12:29:18 -0700
  • qemu (0.14.1+dfsg-3) unstable; urgency=low
      [ Aurelien Jarno ]  * Add patches/qemu-ifunc-ppc.patch and patches/qemu-ifunc-sparc.patch    to fix FTBFS on ppc and sparc.  [ Vagrant Cascadian ]  * Apply patch to fix qemu-user-static mipsel emulation (Closes: #562887).  * Drop support for esd (Closes: #633390). Thanks to Adrian Bunk.  * Add dummy debian/rules build-indep/build-arch targets to resolve lintian     warnings and future policy requirements.  * Remove needless mention of "Author(s)" which triggers a lintian warning.  * Fix maintainer-script-without-set-e lintian checks.  * Fix hyphen-used-as-minus-sign lintian check for qemu-debootstrap manpage. -- Vagrant Cascadian <email address hidden>  Sat, 23 Jul 2011 10:18:37 +0200
  • qemu (0.14.1+dfsg-2) unstable; urgency=low
      * Add override for qemu-user-static binaries which embed needed libraries.  * Add qemu-debootstrap manpage.  * Add patch to fix typo in qemu-system-* (runnning -> running).  * Update to Standards-Version 3.9.2, no changes necessary. -- Vagrant Cascadian <email address hidden>  Sat, 02 Jul 2011 22:29:17 -0700
  • qemu (0.14.0+dfsg-5.1) unstable; urgency=low
      * Non-maintainer upload.  * Replace "librados1-dev" by "librados-dev" in Build-Dependencies. -- Mehdi Dogguy <email address hidden>  Fri, 29 Apr 2011 17:45:05 +0200
  • qemu (0.14.0+dfsg-5) unstable; urgency=low
      * Don't register qemu-mips(el) with binfmt on mips(el).  Closes:    #618369. -- Aurelien Jarno <email address hidden>  Thu, 17 Mar 2011 20:13:27 +0100
  • qemu (0.14.0+dfsg-4) unstable; urgency=low
      * Reupload without automatically generated patch    debian-changes-0.14.0+dfsg-3. -- Aurelien Jarno <email address hidden>  Mon, 28 Feb 2011 15:10:04 +0100
  • qemu (0.14.0+dfsg-3) unstable; urgency=low
      [ Aurelien Jarno ]  * Depends on vgabios (>= 0.6c-3) and add symlinks for qxl, stdvga and    vmware bioses.  Closes: #614252, #614169.  * Tighten build-depends on linux-libc-dev to (>= 2.6.34), to get    vhost-net support.  * Build-depends on xfslibs-dev in order to get TRIM support on XFS    filesystems.  * Build-depends on librados1-dev to get rdb support.  Closes: #614150. -- Aurelien Jarno <email address hidden>  Mon, 28 Feb 2011 09:06:00 +0100
  • qemu (0.14.0+dfsg-2) unstable; urgency=low
      [ Aurelien Jarno ]  * Tighten dependencies on openbios-ppc, openbios-sparc and seabios to    the versions in upstream 0.14.0.  * patches/02_kfreebsd.patch: don't consider futimens/utimensat available    if it is a stub. -- Aurelien Jarno <email address hidden>  Sun, 20 Feb 2011 00:36:20 +0100
  • qemu (0.14.0+dfsg-1) unstable; urgency=low
      [ Vagrant Cascadian ]  * New upstream release candidate version.  * qemu-user-static:     - Drop binfmt support for emulating amd64 on i386, as it is broken and      including it interferes with environments capable of running amd64      natively.  Closes: #604712.    - Remove binfmt support for installed targets in postinst before installing      supported targets, to ensure no-longer-supported targets are actually      removed.    - Remove binfmt support for installed targets in prerm.  [ Aurelien Jarno ]  * Fix configuration files directory.  Closes: #600735.  * Enable AIO support.  [ Vagrant Cascadian ]  * Update debian/copyright to refer to upstream git repositry and clarify    which binary blobs are removed to make the dfsg-free tarball.  * Refresh debian/patches/security/leftover.patch.  -- Vagrant Cascadian <email address hidden>  Fri, 18 Feb 2011 21:07:01 -0800
  • qemu (0.12.5+dfsg-3) unstable; urgency=medium
      * qemu-user-static:     - Drop binfmt support for emulating amd64 on i386, as it is broken and      including it interferes with environments capable of running amd64      natively.  Closes: #604712.    - Remove binfmt support for installed targets in postinst before installing      supported targets, to ensure no-longer-supported targets are actually      removed.    - Remove binfmt support for installed targets in prerm. -- Vagrant Cascadian <email address hidden>  Sun, 28 Nov 2010 15:57:11 -0800
  • qemu (0.12.5+dfsg-2) unstable; urgency=low
    
    
      * mips/mipsel binfmt registration: also match EI_ABIVERSION=1, used by
        OpenWRT. Closes: #591543.
      * Update 99_stable.diff from the stable branch:
        - Fix windows XP boot with libvirt. Closes: bug#579166.
    
     -- Aurelien Jarno <email address hidden>  Tue, 17 Aug 2010 12:56:30 +0200
  • qemu (0.12.5+dfsg-1) unstable; urgency=low
    
    
      * New upstream stable version.
      * qemu-system: don't suggests kqemu-source.  Closes: bug#589217.
      * qemu-keymaps: fix short description.
    
     -- Aurelien Jarno <email address hidden>  Fri, 23 Jul 2010 19:02:14 +0200
  • qemu (0.12.4+dfsg-4) unstable; urgency=high
    
    
      * Update debian/copyright.  Closes: bug#588911.
      * Update 99_stable.diff from the stable branch:
        - Add documentation for the stdio signal option. Closes: bug#588514.
      * Split out keymaps in the qemu-keymaps package.  Closes: bug#559174.
      * Bump Standards-Version to 3.9.0 (no changes).
    
     -- Aurelien Jarno <email address hidden>  Wed, 14 Jul 2010 15:13:04 +0200
  • qemu (0.12.4+dfsg-3) unstable; urgency=low
    
    
      * Update 99_stable.diff from the stable branch. 
    
     -- Aurelien Jarno <email address hidden>  Wed, 16 Jun 2010 23:07:36 +0200
  • qemu (0.12.4+dfsg-2) unstable; urgency=low
    
    
      [ Vagrant Cascadian ]
      * qemu-system: Depend on etherboot-qemu package for PXE roms.
        Closes: #552406.
    
      [ Aurelien Jarno ]
      * Add 99_stable.diff to update from the stable branch.
      * Use --with-pkgversion to set the packaging version.
    
     -- Aurelien Jarno <email address hidden>  Wed, 02 Jun 2010 21:24:26 +0200
  • qemu (0.12.4+dfsg-1) unstable; urgency=low
    
    
      * New upstream stable version:
        - remove debian/patches/01_redir_doc.patch
        - remove debian/patches/04_cmd646.patch
        - update debian/patches/06_sh4.diff
    
     -- Aurelien Jarno <email address hidden>  Fri, 07 May 2010 19:43:48 +0200
  • qemu (0.12.3+dfsg-4) unstable; urgency=low
    
    
      * Add 05_bochs_vbe.diff backported from uptream to support vgabios
        0.6c.
      * Add 06_sh4.diff containing a few SH4 specific fixes backported from
        upstream.
    
     -- Aurelien Jarno <email address hidden>  Fri, 09 Apr 2010 01:44:38 +0200
  • qemu (0.12.3+dfsg-3) unstable; urgency=low
    
    
      * Add symlink for seabios's multiboot.bin.
      * Change configure-stamp depends to non-phony target $(QUILT_STAMPFN).
        Closes: #574444.
      * Fix a crash in cmd646 bmdma code that can be triggered by the guest. 
        Closes: #574539.
      * Explain that KQEMU support has been removed in qemu-system.NEWS.
      * Build-Conflicts with oss4-dev, as this package install a broken
        <linux/soundcard.h> header. Closes: #575320.
    
     -- Aurelien Jarno <email address hidden>  Sat, 03 Apr 2010 17:07:23 +0200
  • qemu (0.12.3+dfsg-2) unstable; urgency=low
    
    
      [ Aurelien Jarno ]
      * Disable KVM support on PowerPC, as it needs at least 2.6.33 kernel
        headers.
    
      [ Vagrant Cascadian ]
      * Support pselect for linux-user arm target. Patch by Michael Casadevall. 
      * Add symlink for seabios's linuxboot.bin to fix -kernel option. Thanks to
        Sami Liedes. Closes: #574174.
      * qemu-system: Switch back to using versioned dependencies for vgabios,
        bochsbios, openhackware, openbios-ppc and openbios-sparc rather than
        recommends/conflicts, to ensure a proper upgrade path. Closes: #573397.
        Reopens: #436094.
    
     -- Vagrant Cascadian <email address hidden>  Fri, 19 Mar 2010 09:31:29 -0700
  • qemu (0.12.3+dfsg-1) unstable; urgency=low
    
    
      [ Vagrant Cascadian ]
      * New upstream version:
        - Fix access to block devices on GNU/kFreeBSD. Closes: #558447.
        - Correctly update clock when waking up from sleep. Closes: #414165.
        - Slirp works with other network interfaces. Closes: #407702.
        - Add the possibility to specify a host to bind to with the -redir
          option. Closes: #366847.
        - Fix cirrus graphics card with windows 98. Closes: #522124.
      * Indicate repackaged upstream tarball by adding "+dfsg" to the version.
        Closes: #388740.
      * Remove second libgnutls-dev from build depends.
      * Update debian/watch with current location of tarball releases.
      * Drop binutils-gold patch, applied upstream.
      * Switch from bochsbios to seabios. Update bios.bin symlink and
        recommends/conflicts.
      * Bump Standards-Version to 3.8.4 (no changes).
      * Update my email address to <email address hidden>.
    
      [ Aurelien Jarno ]
      * Create a kvm group in postinst and set the group of /dev/kvm to kvm.
        Closes: #570544.
      * Add mips and mipsel to the list of supported architectures.
      * Add patches/01_redir_doc.patch to fix a mistake in the redirection
        documentation.
      * Add patches/02_kfreebsd.patch to use the legacy USB stack on
        GNU/kFreeBSD.
      * Force the depends from qemu on qemu-system, qemu-user and qemu-utils
        to (>= {source:Version}).
      * Update openbios related conflicts.
    
     -- Vagrant Cascadian <email address hidden>  Sun, 07 Mar 2010 09:20:43 -0800
  • qemu (0.11.1-2) unstable; urgency=low
    
    
      * Add versioned build-depends on etherboot.
      * Add PXE boot support for virtio network adapters.
      * Move qemu-make-debian-root to qemu-utils package, as it only produces disk
        images not useable by qemu-user. Lower recommends on debootstrap to
        suggests. Add Conflicts and Replaces on older versions of qemu-user.
      * Register /usr/bin/qemu with the alternatives system. Closes: #413840. 
      * qemu: Add ${misc:Depends} so that debhelper can add dependencies if needed.
    
     -- Vagrant Cascadian <email address hidden>  Fri, 08 Jan 2010 09:26:11 -0800
  • qemu (0.11.1-1) unstable; urgency=low
    
    
      [ Aurelien Jarno ]
      * New upstream version.
      * Drop build-depends on libfreebsd-dev on GNU/kFreeBSD.
      * qemu: suggests qemu-user-static.
      * qemu-user-static: register QEMU with binfmt mecanism. Closes: 
        #306637.
      * Bump conflicts on openbios-ppc to (<< 1.0+svn505-1).
      * Add 01-binutils-gold.diff to fix FTBFS with binutils-gold. Closes:
        #556301.
      * Add sparc64 support.
      * Use new roms location in etherboot package.
    
      [ Vagrant Cascadian ]
      * qemu-utils, qemu-user, qemu-system: Set both Conflicts and Replaces for
        older versions of qemu to ensure proper upgrade path.
      * Add versioned build-dep on linux-libc-dev to ensure that KVM support is
        enabled. 
      * qemu-system: Lower dependencies on vgabios, bochsbios, openhackware,
        openbios-ppc and openbios-sparc to recommends. Conflict with versions that
        are incompatible. Closes: #436094.
      * qemu-utils: Tighten the versioned conflicts with kvm, as not all older
        versions actually conflict.
      * qemu-make-debian-root: Apply modified patch from Nicolas Boulenguez that
        documents usage of -s, exits on error, and mentions that it is normally
        run as root. Closes: #447034. 
    
     -- Aurelien Jarno <email address hidden>  Sun, 27 Dec 2009 12:09:11 +0100
  • qemu (0.11.0-6) unstable; urgency=low
    
    
      * Update from stable-0.11 branch.
      * qemu-utils: add Replaces: qemu (<< 0.11.0-2). Closes: #556627, 
        #556860.
    
     -- Aurelien Jarno <email address hidden>  Fri, 20 Nov 2009 08:24:32 +0100
  • qemu (0.11.0-5) unstable; urgency=low
    
    
      * Change the Conflicts: into Replaces: to handle the move of /etc/ifup
        from one package to another correctly. Tighten the version. Closes:
        #556627.
    
     -- Aurelien Jarno <email address hidden>  Wed, 18 Nov 2009 16:30:39 +0000
  • qemu (0.11.0-3) unstable; urgency=low
    
    
      * qemu-system, qemu-user: fix conflicts version. Closes: #556627.
      * qemu-utils: conflicts with kvm (<= 85+dfsg-4.1), as it also provides
        qemu-io.
    
     -- Aurelien Jarno <email address hidden>  Tue, 17 Nov 2009 09:49:24 +0100
  • qemu (0.11.0-1) unstable; urgency=low
    
    
      [ Aurelien Jarno ]
      * New upstream version.
        - Documents virtio NIC. Closes: #541182.
        - Increase the maximum TCG op a target instruction op can expand to.
          Closes: #530645, #542297.
        - KVM is enabled by default. Closes: #520894.
      * Drop 65_kfreebsd.patch.
      * Split the qemu package and use out of tree building. Based on a patch
        from Vagrant Cascadian. Closes: #524774.
      * Only recommends debootstrap for qemu-user and qemu-user static. Closes:
        #543356.
      * Remove /usr/share/qemu/proll.elf. Closes: bug#542247.
      * Add build-depends on libcurl4-gnutls-dev, libgnutls-dev and libsasl2-dev
        to enable new upstream features.
      * Bump Standards-Version to 3.8.3 (no changes).
      * Update Vcs-* fields to point to the new git repository.
      * Add Vagrant Cascadian <email address hidden> to uploaders, and set
        DM-Upload-Allowed to yes.
    
     -- Aurelien Jarno <email address hidden>  Mon, 26 Oct 2009 10:17:57 +0000
  • qemu (0.10.6-1) unstable; urgency=low
    
    
      [ Josh Triplett ]
      * Remove myself from Uploaders.
      
      [ Aurelien Jarno ]
      * New upstream version.
      * Bump Standards-Version to 3.8.2 (no changes).
      * Update debian/watch (closes: bug#538781).
    
     -- Aurelien Jarno <email address hidden>  Fri, 31 Jul 2009 15:25:36 +0200
  • qemu (0.10.5-1) unstable; urgency=low
    
    
      * New upstream version.
    
     -- Aurelien Jarno <email address hidden>  Sun, 24 May 2009 16:15:35 +0200
  • qemu (0.10.4-1) unstable; urgency=low
    
    
      * New upstream version.
      * debian/NEWS.Debian: new file, describing the cache policy options
        (closes: bug#526832).
      * debian/patches/70_versatile_memsize.patch: new patch to set a upper
        limit on the memory size of the versatile boards (closes: 
        bug#527264).
    
     -- Aurelien Jarno <email address hidden>  Tue, 12 May 2009 18:31:29 +0200
  • qemu (0.10.3-1) unstable; urgency=low
    
    
      * New upstream version.
      * Tighten dependency on bochsbios.
    
     -- Aurelien Jarno <email address hidden>  Sat, 02 May 2009 10:14:21 +0200
  • qemu (0.10.2-2) unstable; urgency=low
    
    
      * Add missing comma in build-depends (closes: bug#524207). 
      * Tighten dependency on vgabios.
    
     -- Aurelien Jarno <email address hidden>  Wed, 15 Apr 2009 22:30:43 +0200
  • qemu (0.10.1-1) unstable; urgency=low
    
    
      [ Aurelien Jarno ]
      * New upstream stable release:
        - patches/80_stable-branch.patch: remove.
      * debian/control: 
        - Remove depends on proll.
        - Move depends on device-tree-compiler to build-depends.
        - Bump Standards-Version to 3.8.1 (no changes).
      * patches/82_qemu-img_decimal.patch: new patch from upstream to make
        qemu-img accept sizes with decimal values (closes: bug#501400).
    
     -- Aurelien Jarno <email address hidden>  Sun, 22 Mar 2009 10:13:17 +0100
  • qemu (0.10.0-1) unstable; urgency=low
    
    
      [ Aurelien Jarno ]
      * New upstream release:
        - Fix fr-be keyboard mapping (closes: bug#514462).
        - Fix stat64 structure on ppc-linux-user (closes: bug#470231).
        - Add a chroot option (closes: bug#415996).
        - Add evdev support (closes: bug#513210).
        - Fix loop on symlinks in user mode (closes: bug#297572).
        - Bump depends on openbios-sparc.
        - Depends on openbios-ppc.
        - Update 12_signal_powerpc_support.patch.
        - Update 21_net_soopts.patch.
        - Drop 44_socklen_t_check.patch (merged upstream).
        - Drop 49_null_check.patch (merged upstream).
        - Update 64_ppc_asm_constraints.patch.
        - Drop security/CVE-2008-0928-fedora.patch (merged upstream).
        - Drop security/CVE-2007-5730.patch (merged upstream).
      * patches/80_stable-branch.patch: add patches from stable branch:
        - Fix race condition between signal handler/execution loop (closes:
          bug#474386, bug#501731).
      * debian/copyright: update.
      * Compile and install .dtb files:
        - debian/control: build-depends on device-tree-compiler.
        - debian/patches/81_compile_dtb.patch: new patch from upstream.
        - debian/rules: compile and install bamboo.dtb and mpc8544.dtb.
    
     -- Aurelien Jarno <email address hidden>  Sat, 07 Mar 2009 06:20:34 +0100
  • qemu (0.9.1-10) unstable; urgency=low
    
    
      * debian/patches/96_security.patch: fix off-by-one bug limiting VNC
        passwords to 7 chars (CVE-2008-5714).
    
     -- Aurelien Jarno <email address hidden>  Sun, 28 Dec 2008 12:38:40 +0100
  • qemu (0.9.1-9) unstable; urgency=low
    
    
      * debian/patches/94_security.patch: fix remote DoS via VNC 
        (CORE-2008-1210/CVE-2008-2382).
    
     -- Aurelien Jarno <email address hidden>  Tue, 23 Dec 2008 15:06:11 +0100
  • qemu (0.9.1-8) unstable; urgency=low
    
    
      * debian/patches: 
          - cherry-pick from svn: 61_pseudotty.patch 62_fix-ptyblocking.patch
            closes: #494831
    
     -- Riku Voipio <email address hidden>  Wed, 19 Nov 2008 23:21:43 +0200
  • qemu (0.9.1-7) unstable; urgency=low
    
    
      * debian/qemu-make-debian-root:
        - Fix bug introduced when fixing bug#496394 (Closes: bug#502325).
    
     -- Aurelien Jarno <email address hidden>  Thu, 16 Oct 2008 22:18:39 +0200