Format: 1.8 Date: Wed, 11 May 2016 08:24:36 -0400 Source: qemu-kvm Binary: qemu-kvm qemu-utils qemu-common kvm qemu Architecture: armel Version: 1.0+noroms-0ubuntu14.28 Distribution: precise Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: kvm - dummy transitional package from kvm to qemu-kvm qemu - dummy transitional package from qemu to qemu-kvm qemu-common - qemu common functionality (bios, documentation, etc) qemu-kvm - Full virtualization on i386 and amd64 hardware qemu-utils - qemu utilities Changes: qemu-kvm (1.0+noroms-0ubuntu14.28) precise-security; urgency=medium . * SECURITY UPDATE: denial of service via multiple eof_timers in ohci - debian/patches/CVE-2016-2391.patch: allocate timer only once in hw/usb-ohci.c. - CVE-2016-2391 * SECURITY UPDATE: denial of service in in remote NDIS control message handling - debian/patches/CVE-2016-2392.patch: check USB configuration descriptor object in hw/usb-net.c. - CVE-2016-2392 * SECURITY UPDATE: denial of service or host information leak in USB Net device emulation support - debian/patches/CVE-2016-2538.patch: check RNDIS buffer offsets and length in hw/usb-net.c. - CVE-2016-2538 * SECURITY UPDATE: denial of service via infinite loop in ne2000 - debian/patches/CVE-2016-2841.patch: heck ring buffer control registers in hw/ne2000.c. - CVE-2016-2841 * SECURITY UPDATE: denial of service via payload length in crafted packet - debian/patches/CVE-2016-2857.patch: check packet payload length in net/checksum.c. - CVE-2016-2857 * SECURITY UPDATE: arbitrary host code execution via VGA module - debian/patches/CVE-2016-3710.patch: fix banked access bounds checking in hw/vga.c. - CVE-2016-3710 * SECURITY UPDATE: denial of service via VGA module - debian/patches/CVE-2016-3712.patch: make sure vga register setup for vbe stays intact in hw/vga.c. - CVE-2016-3712 * SECURITY UPDATE: denial of service in Luminary Micro Stellaris Ethernet - debian/patches/CVE-2016-4001.patch: check packet length against receive buffer in hw/stellaris_enet.c. - CVE-2016-4001 * SECURITY UPDATE: denial of sevice and possible code execution in MIPSnet - debian/patches/CVE-2016-4002.patch: check size in hw/mipsnet.c. - CVE-2016-4002 * SECURITY UPDATE: denial of service via infinite loop in in usb_ehci - debian/patches/CVE-2016-4037.patch: apply limit to iTD/sidt descriptors in hw/usb-ehci.c. - CVE-2016-4037 Checksums-Sha1: 94c7da992f4edb2e9d80534c93476e9648423073 3292852 qemu-kvm_1.0+noroms-0ubuntu14.28_armel.deb 46050715dc083b694ce094b91f96ccc6b2c58c37 319666 qemu-utils_1.0+noroms-0ubuntu14.28_armel.deb b0c483d4e957a4225a78159f412f852139081bf2 2668 qemu_1.0+noroms-0ubuntu14.28_armel.deb 469ebdf7fa72a85cb7db94be55b0f376a3a6888c 4320652 qemu-kvm-dbgsym_1.0+noroms-0ubuntu14.28_armel.ddeb bd3d82ac154fdc5ef62f9e5122e0b4a2b56325e9 287618 qemu-utils-dbgsym_1.0+noroms-0ubuntu14.28_armel.ddeb ee66d396763d3b2c45d959e518336344b042351b 3238 kvm_84+dfsg-0ubuntu16+1.0+noroms+0ubuntu14.28_armel.deb Checksums-Sha256: 2cd146c3336ae0de010b5856e329673455f056b9d9287184f4a34612ef3c7f4f 3292852 qemu-kvm_1.0+noroms-0ubuntu14.28_armel.deb 2f4660e6b9b849be49fc557fccd80d1477347f4325f08c3607ba93649c3f74e9 319666 qemu-utils_1.0+noroms-0ubuntu14.28_armel.deb 9b273a928785862ff343509cb6e8191c13f961ed9bc442e19a3e638f8c9f1220 2668 qemu_1.0+noroms-0ubuntu14.28_armel.deb 30874cfabc5e61646e78168d4c75e7cdc40490db06a59d62dde1afadf5acf6ea 4320652 qemu-kvm-dbgsym_1.0+noroms-0ubuntu14.28_armel.ddeb 5c5e5dc7ed9abb0d29e9d2a9da9385358c00b1a5e1cd28a12dc9946ca1c4358c 287618 qemu-utils-dbgsym_1.0+noroms-0ubuntu14.28_armel.ddeb 056854ebc979ffc19cfee7a5a973ce886fb59bf523095c6e89bcbfe43bdc326e 3238 kvm_84+dfsg-0ubuntu16+1.0+noroms+0ubuntu14.28_armel.deb Files: d3089640e1f617d0ad202d0028e13e0c 3292852 misc optional qemu-kvm_1.0+noroms-0ubuntu14.28_armel.deb ce5fec4f42fea5fde92274924eb274f0 319666 misc optional qemu-utils_1.0+noroms-0ubuntu14.28_armel.deb 3e5d05656d94ae144b0d3a015bc56ffe 2668 misc optional qemu_1.0+noroms-0ubuntu14.28_armel.deb fbc20658a31409c9f5e03e0131daf8b4 4320652 misc extra qemu-kvm-dbgsym_1.0+noroms-0ubuntu14.28_armel.ddeb f322ebeed96936563524b19c37738384 287618 misc extra qemu-utils-dbgsym_1.0+noroms-0ubuntu14.28_armel.ddeb ffe8ac74879045d1ae74a2a1c2f96f98 3238 misc optional kvm_84+dfsg-0ubuntu16+1.0+noroms+0ubuntu14.28_armel.deb