Format: 1.8 Date: Mon, 07 Nov 2016 15:47:33 -0500 Source: qemu Binary: qemu qemu-keymaps qemu-system qemu-system-common qemu-system-misc qemu-system-arm qemu-system-mips qemu-system-ppc qemu-system-sparc qemu-system-x86 qemu-user qemu-user-static qemu-utils qemu-guest-agent qemu-kvm qemu-common qemu-system-aarch64 Architecture: ppc64el ppc64el_translations Version: 2.0.0+dfsg-2ubuntu1.30 Distribution: trusty Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: qemu - fast processor emulator qemu-common - dummy transitional package from qemu-common to qemu-keymaps qemu-guest-agent - Guest-side qemu-system agent qemu-keymaps - QEMU keyboard maps qemu-kvm - QEMU Full virtualization qemu-system - QEMU full system emulation binaries qemu-system-aarch64 - QEMU full system emulation binaries (aarch64) qemu-system-arm - QEMU full system emulation binaries (arm) qemu-system-common - QEMU full system emulation binaries (common files) qemu-system-mips - QEMU full system emulation binaries (mips) qemu-system-misc - QEMU full system emulation binaries (miscelaneous) qemu-system-ppc - QEMU full system emulation binaries (ppc) qemu-system-sparc - QEMU full system emulation binaries (sparc) qemu-system-x86 - QEMU full system emulation binaries (x86) qemu-user - QEMU user mode emulation binaries qemu-user-static - QEMU user mode emulation binaries (static version) qemu-utils - QEMU utilities Changes: qemu (2.0.0+dfsg-2ubuntu1.30) trusty-security; urgency=medium . * SECURITY UPDATE: DoS via unbounded memory allocation - debian/patches/CVE-2016-5403.patch: re-enable original patch. - debian/patches/CVE-2016-5403-2.patch: recalculate vq->inuse after migration in hw/virtio/virtio.c. - debian/patches/CVE-2016-5403-3.patch: decrement vq->inuse in virtqueue_discard() in hw/virtio/virtio.c. - debian/patches/CVE-2016-5403-4.patch: zero vq->inuse in virtio_reset() in hw/virtio/virtio.c. - CVE-2016-5403 * SECURITY UPDATE: use after free while writing in vmxnet3 - debian/patches/CVE-2016-6833.patch: check for device_active before write in hw/net/vmxnet3.c. - CVE-2016-6833 * SECURITY UPDATE: DoS via infinite loop during packet fragmentation - debian/patches/CVE-2016-6834.patch: check fragment length during fragmentation in hw/net/vmxnet_tx_pkt.c. - CVE-2016-6834 * SECURITY UPDATE: Buffer overflow in vmxnet_tx_pkt_parse_headers() - debian/patches/CVE-2016-6835.patch: check IP header length in hw/net/vmxnet_tx_pkt.c. - CVE-2016-6835 * SECURITY UPDATE: Information leak in vmxnet3_complete_packet - debian/patches/CVE-2016-6836.patch: initialise local tx descriptor in hw/net/vmxnet3.c. - CVE-2016-6836 * SECURITY UPDATE: Integer overflow in packet initialisation in VMXNET3 - debian/patches/CVE-2016-6888.patch: use g_new for pkt initialisation in hw/net/vmxnet_tx_pkt.c. - CVE-2016-6888 * SECURITY UPDATE: directory traversal flaw in 9p virtio backend - debian/patches/CVE-2016-7116-1.patch: forbid illegal path names in hw/9pfs/virtio-9p.c. - debian/patches/CVE-2016-7116-2.patch: forbid . and .. in file names in hw/9pfs/virtio-9p.c. - debian/patches/CVE-2016-7116-3.patch: handle walk of ".." in the root directory in hw/9pfs/virtio-9p.*. - debian/patches/CVE-2016-7116-4.patch: fix potential segfault during walk in hw/9pfs/virtio-9p.c. - CVE-2016-7116 * SECURITY UPDATE: OOB read and infinite loop in pvscsi - debian/patches/CVE-2016-7155.patch: check page count while initialising descriptor rings in hw/scsi/vmw_pvscsi.c. - CVE-2016-7155 * SECURITY UPDATE: infinite loop when building SG list in pvscsi - debian/patches/CVE-2016-7156.patch: limit loop to fetch SG list in hw/scsi/vmw_pvscsi.c. - CVE-2016-7156 * SECURITY UPDATE: buffer overflow in xlnx.xps-ethernetlite - debian/patches/CVE-2016-7161.patch: fix a heap overflow in hw/net/xilinx_ethlite.c. - CVE-2016-7161 * SECURITY UPDATE: OOB stack memory access in vmware_vga - debian/patches/CVE-2016-7170.patch: correct bitmap and pixmap size checks in hw/display/vmware_vga.c. - CVE-2016-7170 * SECURITY UPDATE: Infinite loop when processing IO requests in pvscsi - debian/patches/CVE-2016-7421.patch: limit process IO loop to ring size in hw/scsi/vmw_pvscsi.c. - CVE-2016-7421 * SECURITY UPDATE: denial of service in mcf via invalid count - debian/patches/CVE-2016-7908.patch: limit buffer descriptor count in hw/net/mcf_fec.c. - CVE-2016-7908 * SECURITY UPDATE: denial of service in pcnet via invalid length - debian/patches/CVE-2016-7909.patch: check rx/tx descriptor ring length in hw/net/pcnet.c. - CVE-2016-7909 * SECURITY UPDATE: denial of service via infinite loop in xhci - debian/patches/CVE-2016-8576.patch: limit the number of link trbs we are willing to process in hw/usb/hcd-xhci.c. - CVE-2016-8576 * SECURITY UPDATE: host memory leakage in 9pfs - debian/patches/CVE-2016-8577.patch: fix potential host memory leak in v9fs_read in hw/9pfs/virtio-9p.c. - CVE-2016-8577 * SECURITY UPDATE: NULL dereference in 9pfs - debian/patches/CVE-2016-8578.patch: allocate space for guest originated empty strings in fsdev/virtio-9p-marshal.c, hw/9pfs/virtio-9p.c. - CVE-2016-8578 * SECURITY UPDATE: infinite loop in Intel HDA controller - debian/patches/CVE-2016-8909.patch: check stream entry count during transfer in hw/audio/intel-hda.c. - CVE-2016-8909 * SECURITY UPDATE: infinite loop in RTL8139 ethernet controller - debian/patches/CVE-2016-8910.patch: limit processing of ring descriptors in hw/net/rtl8139.c. - CVE-2016-8910 * SECURITY UPDATE: memory leakage at device unplug in eepro100 - debian/patches/CVE-2016-9101.patch: fix memory leak in device uninit in hw/net/eepro100.c. - CVE-2016-9101 * SECURITY UPDATE: denial of service via memory leak in 9pfs - debian/patches/CVE-2016-9102.patch: fix memory leak in v9fs_xattrcreate in hw/9pfs/virtio-9p.c. - CVE-2016-9102 * SECURITY UPDATE: information leakage via xattribute in 9pfs - debian/patches/CVE-2016-9103.patch: fix information leak in xattr read in hw/9pfs/virtio-9p.c. - CVE-2016-9103 * SECURITY UPDATE: integer overflow leading to OOB access in 9pfs - debian/patches/CVE-2016-9104.patch: fix integer overflow issue in xattr read/write in hw/9pfs/virtio-9p.c. - CVE-2016-9104 * SECURITY UPDATE: denial of service via memory leakage in 9pfs - debian/patches/CVE-2016-9105.patch: fix memory leak in v9fs_link in hw/9pfs/virtio-9p.c. - CVE-2016-9105 * SECURITY UPDATE: denial of service via memory leakage in 9pfs - debian/patches/CVE-2016-9106.patch: fix memory leak in v9fs_write in hw/9pfs/virtio-9p.c. - CVE-2016-9106 Checksums-Sha1: cc66ac7f8f80d351f68c74b86bb3fca7a494a047 167976 qemu_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 3f71647abfa7b6ee58d1e4cfbd49f376319ef5fe 6092 qemu-system_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 96dd76dd4af6b8cc9167c09f054914fe077bf6c3 158268 qemu-system-common_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 292d8158e5573efffa3d9478d09e9cb05b55af41 3768056 qemu-system-misc_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb c4730b898b3088dd1b6948023f8e0677dae98485 1396286 qemu-system-arm_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb aed0e11ba0892b3bbc7aa9643273b5266ec65c66 1817696 qemu-system-mips_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb c00ca302381497938b934f15e479b07af930fb2a 2086926 qemu-system-ppc_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 73306c548334cd020a6b8d185cf910863cbc3160 1264182 qemu-system-sparc_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb c37448f98f3a7079064a541becef08026d9dd2d7 1464204 qemu-system-x86_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb a58a5dd4d035f2e5c4dd3b8d3d0a7dc854f7b622 3703348 qemu-user_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 4b760d3735812644cf26b033b6f824f935ea680f 5932162 qemu-user-static_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 8258fd46aeb1b6056f608a306fe631aac9815af2 340090 qemu-utils_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 6fafd488e89dfab72470cc9c63af8396d63a07f8 81770 qemu-guest-agent_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb eab2e1a20b0bb11d2b6ce9282886ad9eb20d6450 6650 qemu-kvm_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb a0d653be8994686ed56abb1f4a362738c87dca58 42868 qemu-system-common-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb f48e2c63e22c942041e4a02462a9e0ab100b6180 40695622 qemu-system-misc-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb ae3bb72f234ed9bec01f9aa38667e7e38c88f146 5098630 qemu-system-arm-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb b75e30a1240de52bd8928ae39ad27ea94ea883cc 18516662 qemu-system-mips-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb f13109b532ad1edbf7be72f0f7788001ae2a9cfb 16018926 qemu-system-ppc-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 76cf445bc52a2afc273dc5163e7b4852acc2a3b7 6570838 qemu-system-sparc-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb d51128d94f3ace6d1f7baca7479937156c530bb3 9181548 qemu-system-x86-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb e3ae7a2593c9711d37983835c1d14be9926ad7be 24733242 qemu-user-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 48d814b46b7367e3808702ed794b80351e3fe4da 25927754 qemu-user-static-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 87416aaa9a2bfe2f03185c0e58aff73f6b2cd233 1231036 qemu-utils-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 61b92fddf34fcc826347ca51d1f18bcd2c0aaf51 279970 qemu-guest-agent-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb de0420488e068334593ea168893f92402a2aed75 1963 qemu_2.0.0+dfsg-2ubuntu1.30_ppc64el_translations.tar.gz Checksums-Sha256: c34bcd1edae99be9a6064fcf7cfd6e18d8a8d73bbedbf1caff0e67e39f4fcbcc 167976 qemu_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb f6e62f7d676b09626d9f0dc02195af30dace6daa1bc753cf753e5e81cab14850 6092 qemu-system_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb f4871c8b0a1c2eb0146bec06b21b55f81ca7b7b29f975a96aed96ce09a057d22 158268 qemu-system-common_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb e3a5c2171ac8e6f81648bc3daced979ecc7cd71f3393265997e0bd755769155d 3768056 qemu-system-misc_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 43df65062a7efa15282b4e5605c321bcfb1d9691e8f78bfcb41422c91986dd88 1396286 qemu-system-arm_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb ce9dad7dee196a34336a1f0b3d7ec855246e03e357958cc26a99d7e7e18fa7f9 1817696 qemu-system-mips_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb f223a303a31eaebe3698339e0ba4e27d656b0ef95cb8d39260fe513ecf221d17 2086926 qemu-system-ppc_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 2780b22029a649452a9e5eb5fbbd6cfe97521d373985d9a9ea5493015b568f85 1264182 qemu-system-sparc_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 6cec8c599d3f3d62af41bfdc25423f731be421c35f344362a59c1c7c53fc8785 1464204 qemu-system-x86_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 823f3540a0171d509ec08f7f8191addc1aadc03be2ea346d5ddf07f334a4be94 3703348 qemu-user_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 3fb37fc4b3ac2eaaa623ed27aaf5986433b30cb89f6049c8d3a52d6060a4d248 5932162 qemu-user-static_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 820d0b376c0a3098311453fa38ec1f5a5d694408b2cc29ef2b9fa8ba0248291b 340090 qemu-utils_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 996d9f26e6afac547acd9d2926229e3f471068370a8726748a77ffe76a053007 81770 qemu-guest-agent_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 419ec21535c63e9bf502ef88982bff0cf78d37c1d92aa02f273b3d2561f8b57e 6650 qemu-kvm_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 5a8dc09b7cf8c74574a2872ed07af3df524e91cec9361febfea16272b16cff72 42868 qemu-system-common-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 0968337d36fa490c0b823ed8cb7e336f95febb76ec36044bfc7e36a9fd795875 40695622 qemu-system-misc-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb aa483488d2308aa7a7d1d41fc1c71ebe9cd65034f46b75a8db33a4b85183db6a 5098630 qemu-system-arm-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb d01fd8d9646b32ecfc20abf390cb2192018ab75833cf9305006a50dba7e30e5a 18516662 qemu-system-mips-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb b495de054a0c72235978b48b7acb826833f8b789816d842c4e222b2cb7dbd818 16018926 qemu-system-ppc-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 3e046ebf0aa458704c405ea51e1847189de6f3e143faf7dd9d6a6e3b8fa62c10 6570838 qemu-system-sparc-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 806bfa4c77627526b10eefb356b73e181c28f75dce13edecf58a18656ed91440 9181548 qemu-system-x86-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb eea35482334f871e2be6fb45224123c0e11b912ad3df4fe072be6e80c7581b2a 24733242 qemu-user-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 5c3ed061f334b783d755675054f0a117789fbabe00084ad85d1580e113706866 25927754 qemu-user-static-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 3ff5a1f94146cd84f9413145be656301cd1e4cf781521828609350e9eea48bb6 1231036 qemu-utils-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 246c44a124cdc5dea61af97b988ce7453f9d2f186defa98a4270e86abe8e32fb 279970 qemu-guest-agent-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb e056706fd1ffe5a1b2493195517652348100e45293917c786e3b00186df88b22 1963 qemu_2.0.0+dfsg-2ubuntu1.30_ppc64el_translations.tar.gz Files: be817cfbe7c0ba9dffe7e6c744e12206 167976 otherosfs optional qemu_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb df017f3d546c5743fe4b8b9e947afb72 6092 otherosfs optional qemu-system_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 02cbdcc41b2a7c021aa0095095d01f10 158268 otherosfs optional qemu-system-common_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 42529053639b7e5f6432748122c6c8bc 3768056 otherosfs optional qemu-system-misc_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb ee9fab3370faec85b0bf570d12cb837a 1396286 otherosfs optional qemu-system-arm_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 75e271393473e2127f82098bda1296b6 1817696 otherosfs optional qemu-system-mips_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 14bfee3a5ef19cdf09bdb360d8e84427 2086926 otherosfs optional qemu-system-ppc_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 51124a0d118b8735d39e44b6f382af50 1264182 otherosfs optional qemu-system-sparc_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 247f081d428ffdb0d8e01d8352dc7fc0 1464204 otherosfs optional qemu-system-x86_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 175b42d76f673dd09b6fe11eb5580364 3703348 otherosfs optional qemu-user_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 91bf383737ca00fb3f5ff69480bce5a1 5932162 otherosfs optional qemu-user-static_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 64e48dfd6c90e02ba764309349bb4ddc 340090 otherosfs optional qemu-utils_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb d871a964a0093faed19e576f66a1d9b1 81770 otherosfs optional qemu-guest-agent_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb ed8f0387d81f155b05fc41f39928c4ca 6650 otherosfs optional qemu-kvm_2.0.0+dfsg-2ubuntu1.30_ppc64el.deb 7f789e8e6ed866dceaeb3f3c69aae8de 42868 otherosfs extra qemu-system-common-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 2ee08f22e93b23994cc4ffc2ea41ac9f 40695622 otherosfs extra qemu-system-misc-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 8a192a3ba3b90a2cc69eae165bf76876 5098630 otherosfs extra qemu-system-arm-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb df1c92254bc8a1424906e86444abcd50 18516662 otherosfs extra qemu-system-mips-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 407296168b0a68a40ac42aa2cd561415 16018926 otherosfs extra qemu-system-ppc-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 72f837c629cf9d16b0d4677f34938691 6570838 otherosfs extra qemu-system-sparc-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 9c47b60c711dd7e034430abd14b045d1 9181548 otherosfs extra qemu-system-x86-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 9d6280d712a797c60098ae8ee1888b97 24733242 otherosfs extra qemu-user-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 6b57ee7f49b6adfcbfea77a37fdef551 25927754 otherosfs extra qemu-user-static-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb f202daa6b4fd971e5ec5eb66c71e48d1 1231036 otherosfs extra qemu-utils-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb 57f017baa769d25f2520282500905868 279970 otherosfs extra qemu-guest-agent-dbgsym_2.0.0+dfsg-2ubuntu1.30_ppc64el.ddeb edb69e8d633c1b7855959c848dd292ba 1963 raw-translations - qemu_2.0.0+dfsg-2ubuntu1.30_ppc64el_translations.tar.gz Original-Maintainer: Debian QEMU Team