Package "qemu"
Name: |
qemu
|
Description: |
fast processor emulator, dummy package
|
Latest version: |
1:5.0-5ubuntu9.3 |
Release: |
groovy (20.10) |
Level: |
updates |
Repository: |
main |
Homepage: |
http://www.qemu.org/ |
Links
Download "qemu"
Other versions of "qemu" in Groovy
Packages in group
Deleted packages are displayed in grey.
Changelog
qemu (1:5.0-5ubuntu9.3) groovy; urgency=medium
* d/p/ubuntu/lp-1907656-s390x-s390-virtio-ccw-Reset-PCI-devices-during-subsy:
avoid PCI devices to become unavailable on reset (LP: #1907656)
* d/rules: fix qemu-user-static to really be static (LP: #1908331)
-- Christian Ehrhardt <email address hidden> Tue, 05 Jan 2021 15:46:16 +0100
|
Source diff to previous version |
1907656 |
[UBUNTU 21.04] s390x/s390-virtio-ccw: Reset PCI devices during subsystem reset |
1908331 |
Regression: qemu-user-static binaries are dynamically linked |
|
qemu (1:5.0-5ubuntu9.2) groovy-security; urgency=medium
* SECURITY UPDATE: heap buffer overflow in sdhci_sdma_transfer_multi_blocks()
- debian/patches/ubuntu/CVE-2020-17380.patch: fix DMA Transfer Block
Size field in hw/sd/sdhci.c.
- CVE-2020-17380
- CVE-2020-25085
* SECURITY UPDATE: use-after-free via unchecked return value
- debian/patches/ubuntu/CVE-2020-25084.patch: check return value of
'usb_packet_map' in hw/usb/hcd-xhci.c.
- CVE-2020-25084
* SECURITY UPDATE: out-of-bound access issue
- debian/patches/ubuntu/CVE-2020-25624.patch: check len and
frame_number variables in hw/usb/hcd-ohci.c.
- CVE-2020-25624
* SECURITY UPDATE: infinite loop when a TD list has a loop
- debian/patches/ubuntu/CVE-2020-25625.patch: check for processed TD
before retire in hw/usb/hcd-ohci.c.
- CVE-2020-25625
* SECURITY UPDATE: assertion failure through usb_packet_unmap()
- debian/patches/ubuntu/CVE-2020-25723.patch: check return value of
'usb_packet_map' in hw/usb/hcd-ehci.c.
- CVE-2020-25723
* SECURITY UPDATE: bounds issue in ati_2d_blt
- debian/patches/ubuntu/CVE-2020-27616.patch: check x y display
parameter values in hw/display/ati_2d.c.
- CVE-2020-27616
* SECURITY UPDATE: assertion failure
- debian/patches/ubuntu/CVE-2020-27617.patch: remove an assert call in
eth_get_gso_type in net/eth.c.
- CVE-2020-27617
* Assertion failure via zero mmap_min_addr (LP: #1897854)
- debian/patches/ubuntu/lp1897854-Ensure-mmap_min_addr-is-non-zero.patch:
ensure mmap_min_addr is non-zero in linux-user/main.c.
-- Marc Deslauriers <email address hidden> Fri, 20 Nov 2020 08:02:13 -0500
|
Source diff to previous version |
1897854 |
groovy qemu-arm-static: /build/qemu-W3R0Rj/qemu-5.0/linux-user/elfload.c:2317: pgb_reserved_va: Assertion `guest_base != 0' failed. |
CVE-2020-17380 |
heap buffer overflow in sdhci_sdma_transfer_multi_blocks() in hw/sd/sdhci.c |
CVE-2020-25085 |
QEMU 5.0.0 has a heap-based Buffer Overflow in flatview_read_continue in exec.c because hw/sd/sdhci.c mishandles a write operation in the SDHC_BLKSIZ |
CVE-2020-25084 |
QEMU 5.0.0 has a use-after-free in hw/usb/hcd-xhci.c because the usb_packet_map return value is not checked. |
CVE-2020-25624 |
hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via ... |
CVE-2020-25625 |
hw/usb/hcd-ohci.c in QEMU 5.0.0 has an infinite loop when a TD list has a loop. |
CVE-2020-25723 |
assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c |
CVE-2020-27616 |
ati_2d_blt in hw/display/ati_2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation. A guest can crash the QEMU process. |
CVE-2020-27617 |
eth_get_gso_type in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data |
|
qemu (1:5.0-5ubuntu9.1) groovy; urgency=medium
* d/p/ubuntu/define-ubuntu-machine-types.patch: update to fix 15.04 wily
machine type to match how it originally was released (LP: #1902654)
-- Christian Ehrhardt <email address hidden> Mon, 09 Nov 2020 08:19:07 +0100
|
1902654 |
failure to migrate virtual machines with pc-i440fx-wily type to ubuntu 20.04 |
|
About
-
Send Feedback to @ubuntu_updates