libvirt (1.1.1-0ubuntu8) saucy; urgency=low * SECURITY UPDATE: denial of service via invalid free in virFileNBDDeviceAssociate. - debian/patches/CVE-2013-4297.patch: properly initialize qemunbd in src/util/virfile.c. - CVE-2013-4297 -- Marc Deslauriers <email address hidden> Wed, 02 Oct 2013 13:35:14 -0400