qemu 1:2.10+dfsg-0ubuntu3.5 source package in Ubuntu

Changelog

qemu (1:2.10+dfsg-0ubuntu3.5) artful-security; urgency=medium

  * SECURITY UPDATE: DoS via out-of-bounds read in VGA driver
    - debian/patches/CVE-2017-13672-2.patch: handle cirrus vbe mode
      wraparounds in hw/display/vga.c.
    - debian/patches/CVE-2017-13672-3.patch: fix region checks in
      wraparound case in hw/display/vga.c.
    - CVE-2017-13672
  * SECURITY UPDATE: information disclosure via race in 9pfs
    - debian/patches/CVE-2017-15038.patch: use g_malloc0 to allocate space
      for xattr in hw/9pfs/9p.c.
    - CVE-2017-15038
  * SECURITY UPDATE: long export name overflow in NBD server
    - debian/patches/CVE-2017-15118.patch: check length in nbd/server.c.
    - CVE-2017-15118
  * SECURITY UPDATE: DoS via large option request in NBD server
    - debian/patches/CVE-2017-15119.patch: reject options larger than 32M
      in nbd/server.c.
    - CVE-2017-15119
  * SECURITY UPDATE: DoS via unbounded memory allocation in VNC server
    - debian/patches/CVE-2017-15124-pre1.patch: remove 'sync' parameter
      from vnc_update_client in ui/vnc.c.
    - debian/patches/CVE-2017-15124-pre2.patch: remove unreachable code in
      vnc_update_client in ui/vnc.c.
    - debian/patches/CVE-2017-15124-pre3.patch: remove redundant
      indentation in vnc_client_update in ui/vnc.c.
    - debian/patches/CVE-2017-15124-pre4.patch: avoid pointless VNC updates
      if framebuffer isn't dirty in ui/vnc.c.
    - debian/patches/CVE-2017-15124-pre5.patch: introduce enum to track VNC
      client framebuffer update request state in ui/vnc.*.
    - debian/patches/CVE-2017-15124-pre6.patch: correctly reset framebuffer
      update state after processing dirty regions in ui/vnc.c.
    - debian/patches/CVE-2017-15124-pre7.patch: refactor code for
      determining if an update should be sent to the client in ui/vnc.c.
    - debian/patches/CVE-2017-15124-pre8.patch: track how much decoded data
      we consumed when doing SASL encoding in ui/vnc-auth-sasl.c,
      ui/vnc-auth-sasl.h.
    - debian/patches/CVE-2017-15124-1.patch: fix VNC client throttling when
      audio capture is active in ui/vnc.*.
    - debian/patches/CVE-2017-15124-2.patch: fix VNC client throttling when
      forced update is requested in ui/vnc-auth-sasl.c, ui/vnc-jobs.c,
      ui/vnc.*.
    - debian/patches/CVE-2017-15124-3.patch: place a hard cap on VNC server
      output buffer size in ui/vnc.c.
    - CVE-2017-15124
  * SECURITY UPDATE: memory leak in websocket GSource
    - debian/patches/CVE-2017-15268.patch: monitor encoutput buffer size
      from websocket GSource in io/channel-websock.c.
    - CVE-2017-15268
  * SECURITY UPDATE: DoS in cirrus driver
    - debian/patches/CVE-2017-15289.patch: fix oob access in mode4and5
      write functions in hw/display/cirrus_vga.c.
    - CVE-2017-15289
  * SECURITY UPDATE: out-of-bounds access in ps2 driver
    - debian/patches/CVE-2017-16845.patch: check PS2Queue pointers in
      post_load routine in hw/input/ps2.c.
    - CVE-2017-16845
  * SECURITY UPDATE: DoS in Virtio Vring implementation
    - debian/patches/CVE-2017-17381.patch: check VirtQueue Vring object is
      set in hw/virtio/virtio.c.
    - CVE-2017-17381
  * SECURITY UPDATE: DoS in VGA driver
    - debian/patches/CVE-2018-5683.patch: check the validation of memory
      addr when draw text in hw/display/vga.c.
    - CVE-2018-5683

 -- Marc Deslauriers <email address hidden>  Wed, 14 Feb 2018 14:19:31 -0500

Upload details

Uploaded by:
Marc Deslauriers on 2018-02-15
Uploaded to:
Artful
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
otherosfs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
qemu_2.10+dfsg.orig.tar.xz 8.0 MiB 204059a59774745d2366f2700c148bccb2712803406b3c2607052194101c1193
qemu_2.10+dfsg-0ubuntu3.5.debian.tar.xz 123.7 KiB 4a2b2b43fe43f0e0171b8d81fa0bc30e4e36fd8cc43d4133591e0a8c7b7abbda
qemu_2.10+dfsg-0ubuntu3.5.dsc 6.2 KiB 45c7d2509f2179a6de943cff1e10fb95ebe0369b1662b21a4b9f02587146e0e6

View changes file

Binary packages built by this source

qemu: fast processor emulator

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
 SPARC and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs. QEMU has
 two operating modes:
 .
  * User mode emulation: QEMU can launch Linux processes compiled for
    one CPU on another CPU.
  * Full system emulation: QEMU emulates a full system, including a
    processor and various peripherals. It enables easier testing and
    debugging of system code. It can also be used to provide virtual
    hosting of several virtual machines on a single server.
 .
 As QEMU requires no host kernel patches to run, it is very safe and
 easy to use.
 .
 This package is a metapackage depending on all qemu-related packages.

qemu-block-extra: extra block backend modules for qemu-system and qemu-utils

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
 SPARC and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides extra block device backend modules for qemu-system
 emulation and qemu-img from qemu-utils package, which are rarely used and
 has extra dependencies.

qemu-block-extra-dbgsym: Debug symbols for qemu-block-extra
qemu-guest-agent: Guest-side qemu-system agent

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
 SPARC and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides a daemon (agent) to run inside qemu-system
 guests (full system emulation). It communicates with the host using
 a virtio-serial channel org.qemu.guest_agent.0, and allows one to perform
 some functions in the guest from the host, including:
  - querying and setting guest system time
  - performing guest filesystem sync operation
  - initiating guest shutdown or suspend to ram
  - accessing guest files
  - freezing/thawing guest filesystem operations
  - others.
 .
 Install this package on a system which is running as guest inside
 qemu virtual machine. It is not used on the host.

qemu-guest-agent-dbgsym: Debug symbols for qemu-guest-agent
qemu-kvm: QEMU Full virtualization

 QEMU is a fast processor emulator. This package depends on the
 appropriate qemu-system-$arch to enable KVM to be run. It also
 includes a script /usr/bin/kvm which runs the appropriate
 qemu-system-$arch in kvm mode.
 .
 Please note that old qemu-kvm configuration files (in /etc/kvm/) are
 no longer used.

qemu-system: QEMU full system emulation binaries

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
 SPARC and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This metapackage provides the full system emulation binaries for all supported
 targets, by depending on all per-architecture system emulation packages which
 QEMU supports.

qemu-system-aarch64: QEMU full system emulation binaries (aarch64)

 QEMU is a fast processor emulator: currently the package supports
 ARM emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This is a transition package as qemu-system-aarch64 has been moved into
 qemu-system-arm.

qemu-system-arm: QEMU full system emulation binaries (arm)

 QEMU is a fast processor emulator: currently the package supports
 ARM emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides the full system emulation binaries to emulate
 the following arm hardware: aarch64 arm.
 .
 In system emulation mode QEMU emulates a full system, including a processor
 and various peripherals. It enables easier testing and debugging of system
 code. It can also be used to provide virtual hosting of several virtual
 machines on a single server.

qemu-system-arm-dbgsym: Debug symbols for qemu-system-arm
qemu-system-common: QEMU full system emulation binaries (common files)

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
 SPARC and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides common files needed for target-specific
 full system emulation (qemu-system-*) packages.

qemu-system-common-dbgsym: Debug symbols for qemu-system-common
qemu-system-mips: QEMU full system emulation binaries (mips)

 QEMU is a fast processor emulator: currently the package supports
 MIPS emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides the full system emulation binaries to emulate
 the following mips hardware: mips mipsel mips64 mips64el.
 .
 In system emulation mode QEMU emulates a full system, including a processor
 and various peripherals. It enables easier testing and debugging of system
 code. It can also be used to provide virtual hosting of several virtual
 machines on a single server.

qemu-system-mips-dbgsym: Debug symbols for qemu-system-mips
qemu-system-misc: QEMU full system emulation binaries (miscellaneous)

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, M68k (ColdFire), MicroBlaze, and SH4
 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides the full system emulation binaries to emulate
 various other hardware which did not made into separate packages.
 Emulators for the following architectures are provided:
   alpha cris lm32 m68k microblaze microblazeel moxie or1k
  sh4 sh4eb tricore xtensa xtensaeb unicore32.
 .
 In system emulation mode QEMU emulates a full system, including a processor
 and various peripherals. It enables easier testing and debugging of system
 code. It can also be used to provide virtual hosting of several virtual
 machines on a single server.

qemu-system-misc-dbgsym: Debug symbols for qemu-system-misc
qemu-system-ppc: QEMU full system emulation binaries (ppc)

 QEMU is a fast processor emulator: currently the package supports
 PowerPC emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides the full system emulation binaries to emulate
 the following PowerPC hardware: ppc ppcemb ppc64.
 .
 In system emulation mode QEMU emulates a full system, including a processor
 and various peripherals. It enables easier testing and debugging of system
 code. It can also be used to provide virtual hosting of several virtual
 machines on a single server.

qemu-system-ppc-dbgsym: Debug symbols for qemu-system-ppc
qemu-system-s390x: QEMU full system emulation binaries (s390x)

 QEMU is a fast processor emulator: currently the package supports
 s390x emulation. By using dynamic translation it achieves reasonable
 speed while being easy to port on new host CPUs.
 .
 This package provides the full system emulation binaries to emulate
 the following s390x hardware: s390x.
 .
 In system emulation mode QEMU emulates a full system, including a processor
 and various peripherals. It enables easier testing and debugging of system
 code. It can also be used to provide virtual hosting of several virtual
 machines on a single server.

qemu-system-s390x-dbgsym: Debug symbols for qemu-system-s390x
qemu-system-sparc: QEMU full system emulation binaries (sparc)

 QEMU is a fast processor emulator: currently the package supports
 SPARC emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides the full system emulation binaries to emulate
 the following sparc hardware: sparc sparc64.
 .
 In system emulation mode QEMU emulates a full system, including a processor
 and various peripherals. It enables easier testing and debugging of system
 code. It can also be used to provide virtual hosting of several virtual
 machines on a single server.

qemu-system-sparc-dbgsym: Debug symbols for qemu-system-sparc
qemu-system-x86: QEMU full system emulation binaries (x86)

 QEMU is a fast processor emulator: currently the package supports
 i386 and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides the full system emulation binaries to emulate
 the following x86 hardware: i386 x86_64.
 .
 In system emulation mode QEMU emulates a full system, including a processor
 and various peripherals. It enables easier testing and debugging of system
 code. It can also be used to provide virtual hosting of several virtual
 machines on a single server.
 .
 On x86 host hardware this package also enables KVM kernel virtual machine
 usage on systems which supports it.

qemu-system-x86-dbgsym: Debug symbols for qemu-system-x86
qemu-user: QEMU user mode emulation binaries

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
 SPARC and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides the user mode emulation binaries. In this mode
 QEMU can launch Linux processes compiled for one CPU on another CPU.
 .
 If qemu-user-binfmt package is also installed, it will register binary
 format handlers from this qemu-user package with the kernel so it will
 be possible to run foreign binaries directly. However, this might not
 be suitable for using inside foreign chroots, in which case it is
 possible to use qemu-user-static package instead of qemu-user-binmft, --
 qemu-user-static will register statically linked binfmt handlers instead.

qemu-user-binfmt: QEMU user mode binfmt registration for qemu-user

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
 SPARC and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides binfmt support registration for the user mode
 emulation binaries from qemu-user. This is an empty package, it does
 not contain any additional files, only registration scripts which run
 at install and remove times.

qemu-user-dbgsym: Debug symbols for qemu-user
qemu-user-static: QEMU user mode emulation binaries (static version)

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
 SPARC and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides the user mode emulation binaries, built
 statically. In this mode QEMU can launch Linux processes compiled for
 one CPU on another CPU.
 .
 If binfmt-support package is installed, qemu-user-static package will
 register binary formats which the provided emulators can handle, so
 that it will be possible to run foreign binaries directly.

qemu-user-static-dbgsym: Debug symbols for qemu-user-static
qemu-utils: QEMU utilities

 QEMU is a fast processor emulator: currently the package supports
 ARM, CRIS, i386, M68k (ColdFire), MicroBlaze, MIPS, PowerPC, SH4,
 SPARC and x86-64 emulation. By using dynamic translation it achieves
 reasonable speed while being easy to port on new host CPUs.
 .
 This package provides QEMU related utilities:
  * qemu-img: QEMU disk image utility
  * qemu-io: QEMU disk exerciser
  * qemu-nbd: QEMU disk network block device server

qemu-utils-dbgsym: Debug symbols for qemu-utils