Format: 1.8 Date: Wed, 11 May 2016 08:24:36 -0400 Source: qemu-kvm Binary: qemu-kvm qemu-utils qemu-common kvm qemu Architecture: amd64 Version: 1.0+noroms-0ubuntu14.28 Distribution: precise Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: kvm - dummy transitional package from kvm to qemu-kvm qemu - dummy transitional package from qemu to qemu-kvm qemu-common - qemu common functionality (bios, documentation, etc) qemu-kvm - Full virtualization on i386 and amd64 hardware qemu-utils - qemu utilities Changes: qemu-kvm (1.0+noroms-0ubuntu14.28) precise-security; urgency=medium . * SECURITY UPDATE: denial of service via multiple eof_timers in ohci - debian/patches/CVE-2016-2391.patch: allocate timer only once in hw/usb-ohci.c. - CVE-2016-2391 * SECURITY UPDATE: denial of service in in remote NDIS control message handling - debian/patches/CVE-2016-2392.patch: check USB configuration descriptor object in hw/usb-net.c. - CVE-2016-2392 * SECURITY UPDATE: denial of service or host information leak in USB Net device emulation support - debian/patches/CVE-2016-2538.patch: check RNDIS buffer offsets and length in hw/usb-net.c. - CVE-2016-2538 * SECURITY UPDATE: denial of service via infinite loop in ne2000 - debian/patches/CVE-2016-2841.patch: heck ring buffer control registers in hw/ne2000.c. - CVE-2016-2841 * SECURITY UPDATE: denial of service via payload length in crafted packet - debian/patches/CVE-2016-2857.patch: check packet payload length in net/checksum.c. - CVE-2016-2857 * SECURITY UPDATE: arbitrary host code execution via VGA module - debian/patches/CVE-2016-3710.patch: fix banked access bounds checking in hw/vga.c. - CVE-2016-3710 * SECURITY UPDATE: denial of service via VGA module - debian/patches/CVE-2016-3712.patch: make sure vga register setup for vbe stays intact in hw/vga.c. - CVE-2016-3712 * SECURITY UPDATE: denial of service in Luminary Micro Stellaris Ethernet - debian/patches/CVE-2016-4001.patch: check packet length against receive buffer in hw/stellaris_enet.c. - CVE-2016-4001 * SECURITY UPDATE: denial of sevice and possible code execution in MIPSnet - debian/patches/CVE-2016-4002.patch: check size in hw/mipsnet.c. - CVE-2016-4002 * SECURITY UPDATE: denial of service via infinite loop in in usb_ehci - debian/patches/CVE-2016-4037.patch: apply limit to iTD/sidt descriptors in hw/usb-ehci.c. - CVE-2016-4037 Checksums-Sha1: 55e9c0200f50c19bad3ffc6095930430d22be53e 3524540 qemu-kvm_1.0+noroms-0ubuntu14.28_amd64.deb feb3e2d381b6750888299b2ec8892fa04d7c2e3b 356548 qemu-utils_1.0+noroms-0ubuntu14.28_amd64.deb 4cc630a02d2905fe441d172784f4386afefd130b 2670 qemu_1.0+noroms-0ubuntu14.28_amd64.deb 8f5fde8177a71d39e753587a6f551a2213d71b3d 6577700 qemu-kvm-dbgsym_1.0+noroms-0ubuntu14.28_amd64.ddeb a641ae807d186ecf7de5846dc18af8bdecd35809 420080 qemu-utils-dbgsym_1.0+noroms-0ubuntu14.28_amd64.ddeb 21dc0c04fdbcea1e85014fe1a6e72f9442d52fa7 3232 kvm_84+dfsg-0ubuntu16+1.0+noroms+0ubuntu14.28_amd64.deb Checksums-Sha256: bdd717a718e713489dc664d6035f3745a1fc4e10510507b70c311aba232e4eb0 3524540 qemu-kvm_1.0+noroms-0ubuntu14.28_amd64.deb d6b02de7ff81abd0ded681ae1dd2eeb4bf8b2d7c5ab167db2e216e60c781f023 356548 qemu-utils_1.0+noroms-0ubuntu14.28_amd64.deb 79e0d2d304fc1914e8c2bbf2f660c7fe53e4c86ff963dbda31f34e50f250c5d5 2670 qemu_1.0+noroms-0ubuntu14.28_amd64.deb 32a600b3b000517e86d98a4947eca0c1ccf16bfc9bb1c720ad76d00a7ef3effb 6577700 qemu-kvm-dbgsym_1.0+noroms-0ubuntu14.28_amd64.ddeb 831bc8ea45bfe236213c0c4a3d2ef942eac87a4dd7fa8f606dafc4a661447c12 420080 qemu-utils-dbgsym_1.0+noroms-0ubuntu14.28_amd64.ddeb d24361feb544de8e059eb169af7abdd4b3d4523131391fdc23903bf3836d2fa8 3232 kvm_84+dfsg-0ubuntu16+1.0+noroms+0ubuntu14.28_amd64.deb Files: d9e01166aa0bb907aa814b1e7f810d85 3524540 misc optional qemu-kvm_1.0+noroms-0ubuntu14.28_amd64.deb 136b6803c736b7928f8ae0f4ee8161cd 356548 misc optional qemu-utils_1.0+noroms-0ubuntu14.28_amd64.deb cfe129aff0621055ebe3cbc72975bd91 2670 misc optional qemu_1.0+noroms-0ubuntu14.28_amd64.deb a617ed483db235b61f0e9d65cf9c6be6 6577700 misc extra qemu-kvm-dbgsym_1.0+noroms-0ubuntu14.28_amd64.ddeb f3ef89533e1e78008ce395d1d42af9b8 420080 misc extra qemu-utils-dbgsym_1.0+noroms-0ubuntu14.28_amd64.ddeb a1cc6a15c0447cd1d3dfc792f8f6248a 3232 misc optional kvm_84+dfsg-0ubuntu16+1.0+noroms+0ubuntu14.28_amd64.deb