Publishing details
Changelog
qemu (1:4.2-3ubuntu6.28) focal-security; urgency=medium
* SECURITY UPDATE: infinite loop in USB xHCI controller
- debian/patches/CVE-2020-14394.patch: Fix unbounded loop in
xhci_ring_chain_length() in hw/usb/hcd-xhci.c.
- CVE-2020-14394
* SECURITY UPDATE: code execution in TCG Accelerator
- debian/patches/CVE-2020-24165.patch: fix race in cpu_exec_step_atomic
in accel/tcg/cpu-exec.c.
- CVE-2020-24165
* SECURITY UPDATE: OOB access in ATI VGA device
- debian/patches/CVE-2021-3638.patch: Fix buffer overflow in ati_2d_blt
in hw/display/ati_2d.c.
- CVE-2021-3638
* SECURITY UPDATE: OOB read in RDMA device
- debian/patches/CVE-2023-1544.patch: protect against buggy or
malicious guest driver in hw/rdma/vmw/pvrdma_main.c.
- CVE-2023-1544
* SECURITY UPDATE: 9pfs special file access
- debian/patches/CVE-2023-2861.patch: prevent opening special files in
fsdev/virtfs-proxy-helper.c, hw/9pfs/9p-util.h.
- CVE-2023-2861
* SECURITY UPDATE: heap overflow in crypto device
- debian/patches/CVE-2023-3180.patch: verify src&dst buffer length for
sym request in hw/virtio/virtio-crypto.c.
- CVE-2023-3180
* SECURITY UPDATE: DoS in VNC server
- debian/patches/CVE-2023-3354.patch: remove io watch if TLS channel is
closed during handshake in include/io/channel-tls.h,
io/channel-tls.c.
- CVE-2023-3354
* SECURITY UPDATE: disk offset 0 access
- debian/patches/CVE-2023-5088.patch: cancel async DMA operation before
resetting state in hw/ide/core.c.
- CVE-2023-5088
-- Marc Deslauriers <email address hidden> Thu, 30 Nov 2023 14:45:57 -0500
Builds
Built packages
-
qemu
fast processor emulator, dummy package
-
qemu-block-extra
extra block backend modules for qemu-system and qemu-utils
-
qemu-block-extra-dbgsym
debug symbols for qemu-block-extra
-
qemu-guest-agent
Guest-side qemu-system agent
-
qemu-guest-agent-dbgsym
debug symbols for qemu-guest-agent
-
qemu-kvm
QEMU Full virtualization on x86 hardware
-
qemu-system
QEMU full system emulation binaries
-
qemu-system-arm
QEMU full system emulation binaries (arm)
-
qemu-system-arm-dbgsym
debug symbols for qemu-system-arm
-
qemu-system-common
QEMU full system emulation binaries (common files)
-
qemu-system-common-dbgsym
debug symbols for qemu-system-common
-
qemu-system-data
QEMU full system emulation (data files)
-
qemu-system-gui
QEMU full system emulation binaries (user interface and audio support)
-
qemu-system-gui-dbgsym
debug symbols for qemu-system-gui
-
qemu-system-mips
QEMU full system emulation binaries (mips)
-
qemu-system-mips-dbgsym
debug symbols for qemu-system-mips
-
qemu-system-misc
QEMU full system emulation binaries (miscellaneous)
-
qemu-system-misc-dbgsym
debug symbols for qemu-system-misc
-
qemu-system-ppc
QEMU full system emulation binaries (ppc)
-
qemu-system-ppc-dbgsym
debug symbols for qemu-system-ppc
-
qemu-system-s390x
QEMU full system emulation binaries (s390x)
-
qemu-system-s390x-dbgsym
debug symbols for qemu-system-s390x
-
qemu-system-sparc
QEMU full system emulation binaries (sparc)
-
qemu-system-sparc-dbgsym
debug symbols for qemu-system-sparc
-
qemu-system-x86
QEMU full system emulation binaries (x86)
-
qemu-system-x86-dbgsym
debug symbols for qemu-system-x86
-
qemu-system-x86-microvm
QEMU minimized system emulation binaries (x86)
-
qemu-system-x86-microvm-dbgsym
debug symbols for qemu-system-x86-microvm
-
qemu-system-x86-xen
QEMU full system emulation binaries (x86)
-
qemu-system-x86-xen-dbgsym
debug symbols for qemu-system-x86-xen
-
qemu-user
QEMU user mode emulation binaries
-
qemu-user-binfmt
QEMU user mode binfmt registration for qemu-user
-
qemu-user-dbgsym
debug symbols for qemu-user
-
qemu-user-static
QEMU user mode emulation binaries (static version)
-
qemu-user-static-dbgsym
debug symbols for qemu-user-static
-
qemu-utils
QEMU utilities
-
qemu-utils-dbgsym
debug symbols for qemu-utils
Package files