Format: 1.8 Date: Wed, 11 May 2016 08:24:36 -0400 Source: qemu-kvm Binary: qemu-kvm qemu-utils qemu-common kvm qemu Architecture: armhf Version: 1.0+noroms-0ubuntu14.28 Distribution: precise Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: kvm - dummy transitional package from kvm to qemu-kvm qemu - dummy transitional package from qemu to qemu-kvm qemu-common - qemu common functionality (bios, documentation, etc) qemu-kvm - Full virtualization on i386 and amd64 hardware qemu-utils - qemu utilities Changes: qemu-kvm (1.0+noroms-0ubuntu14.28) precise-security; urgency=medium . * SECURITY UPDATE: denial of service via multiple eof_timers in ohci - debian/patches/CVE-2016-2391.patch: allocate timer only once in hw/usb-ohci.c. - CVE-2016-2391 * SECURITY UPDATE: denial of service in in remote NDIS control message handling - debian/patches/CVE-2016-2392.patch: check USB configuration descriptor object in hw/usb-net.c. - CVE-2016-2392 * SECURITY UPDATE: denial of service or host information leak in USB Net device emulation support - debian/patches/CVE-2016-2538.patch: check RNDIS buffer offsets and length in hw/usb-net.c. - CVE-2016-2538 * SECURITY UPDATE: denial of service via infinite loop in ne2000 - debian/patches/CVE-2016-2841.patch: heck ring buffer control registers in hw/ne2000.c. - CVE-2016-2841 * SECURITY UPDATE: denial of service via payload length in crafted packet - debian/patches/CVE-2016-2857.patch: check packet payload length in net/checksum.c. - CVE-2016-2857 * SECURITY UPDATE: arbitrary host code execution via VGA module - debian/patches/CVE-2016-3710.patch: fix banked access bounds checking in hw/vga.c. - CVE-2016-3710 * SECURITY UPDATE: denial of service via VGA module - debian/patches/CVE-2016-3712.patch: make sure vga register setup for vbe stays intact in hw/vga.c. - CVE-2016-3712 * SECURITY UPDATE: denial of service in Luminary Micro Stellaris Ethernet - debian/patches/CVE-2016-4001.patch: check packet length against receive buffer in hw/stellaris_enet.c. - CVE-2016-4001 * SECURITY UPDATE: denial of sevice and possible code execution in MIPSnet - debian/patches/CVE-2016-4002.patch: check size in hw/mipsnet.c. - CVE-2016-4002 * SECURITY UPDATE: denial of service via infinite loop in in usb_ehci - debian/patches/CVE-2016-4037.patch: apply limit to iTD/sidt descriptors in hw/usb-ehci.c. - CVE-2016-4037 Checksums-Sha1: 77e56ef3ea5da1cb963a6a9f0c41a4943758da5b 3295312 qemu-kvm_1.0+noroms-0ubuntu14.28_armhf.deb b612fb1340e67dddb3a9df322aa8ad205d651e6a 319808 qemu-utils_1.0+noroms-0ubuntu14.28_armhf.deb 9a1ac5114e148b3990637ba9f95e6a8df8c39488 2666 qemu_1.0+noroms-0ubuntu14.28_armhf.deb 399cc2bb348f2485ad666440ab39747db4601ea4 3324636 qemu-kvm-dbgsym_1.0+noroms-0ubuntu14.28_armhf.ddeb 09472fff086b7070d9d3eb2e76bcaecbfaa319b6 287964 qemu-utils-dbgsym_1.0+noroms-0ubuntu14.28_armhf.ddeb 6eb7657c199a16d5e4d8b71490b969d398b6d68e 3234 kvm_84+dfsg-0ubuntu16+1.0+noroms+0ubuntu14.28_armhf.deb Checksums-Sha256: 185b88877433669061db3c5747d436d0ab5eb49a794b3c15df2aa0b624c81fb4 3295312 qemu-kvm_1.0+noroms-0ubuntu14.28_armhf.deb 05c6d95356435415b4b59c1a2bddec497897c131e026f0884a2d0ecc944708a2 319808 qemu-utils_1.0+noroms-0ubuntu14.28_armhf.deb 47f07b8cd8486266fde7138cac214e9cc1f24fcbd8c9e3256733e7e6cef324d6 2666 qemu_1.0+noroms-0ubuntu14.28_armhf.deb 0ec9f292520a9a84c5e1ab3ba55ce23d85cb75e0ab98ad6d12577f8b7a11858b 3324636 qemu-kvm-dbgsym_1.0+noroms-0ubuntu14.28_armhf.ddeb 27f8b0e105cf4173cf2081a6c182930702d9ea3775216fbe21985a81f8bc1891 287964 qemu-utils-dbgsym_1.0+noroms-0ubuntu14.28_armhf.ddeb 727b52799cdcae50e051f4facd1549cca21da78b593e75533a0f1d9cedd1c751 3234 kvm_84+dfsg-0ubuntu16+1.0+noroms+0ubuntu14.28_armhf.deb Files: 6c9f581f46b7bbc622a05a831ba0e92d 3295312 misc optional qemu-kvm_1.0+noroms-0ubuntu14.28_armhf.deb a2843b9c7350a885c68df2d6c25c1039 319808 misc optional qemu-utils_1.0+noroms-0ubuntu14.28_armhf.deb bc74a948ce28227260a51cd56fa2ebde 2666 misc optional qemu_1.0+noroms-0ubuntu14.28_armhf.deb a887942419eb8b33cecb26c3251ec707 3324636 misc extra qemu-kvm-dbgsym_1.0+noroms-0ubuntu14.28_armhf.ddeb aa2d8698c4c6a88aa255afe4bb877bee 287964 misc extra qemu-utils-dbgsym_1.0+noroms-0ubuntu14.28_armhf.ddeb 0526499afd62c692f7a9b12ada7f23a3 3234 misc optional kvm_84+dfsg-0ubuntu16+1.0+noroms+0ubuntu14.28_armhf.deb