Commits · debian-bullseye · QEMU / qemu

06 May, 2022 1 commit
- update changelog; upload 5.2+dfsg-11+deb11u2 to bullseye-security · f16fc950
  Michael Tokarev authored May 06, 2022
  
  f16fc950
04 May, 2022 3 commits

virtio-net-fix-map-leaking-on-error-during-receive-CVE-2022-26353.patch · 488e828a
Michael Tokarev authored May 04, 2022
```
memory leak after fix for CVE-2021-3748
```
488e828a
vhost-vsock-detach-the-virqueue-element-on-error-CVE-2022-26354.patch · 8252c0e0
Michael Tokarev authored May 04, 2022
```
vhost-sock device was not detaching invalid element from the virtqueue on error
```
8252c0e0

3 patches from upstream to fix 3 security issues · e4c2b259

Michael Tokarev authored May 04, 2022

ui-cursor-fix-integer-overflow-in-cursor_alloc-CVE-2021-4206.patch
display-qxl-render-fix-race-condition-in-qxl_cursor-CVE-2021-4207.patch
two flaws can lead to allocation of small cursor object followed by a
subsequent heap-based buffer overflow with a potential for executing
arbitrary code within the context of QEMU process
virtiofsd-drop-membership-of-all-supplementary-group-CVE-2022-0358.patch
potential group escalation allowed by virtiofsd

e4c2b259

29 Sep, 2021 5 commits
- update changelog; upload 5.2+dfsg-11+deb11u1 to bullseye-security · 4c292706
  Michael Tokarev authored Aug 25, 2021
  
  4c292706
- vhost-user-gpu fxes (CVE-2021-3544, CVE-2021-3545, CVE-2021-3546, #989042) · 89f878ea
  Michael Tokarev authored Sep 29, 2021
  
  89f878ea
- ati_2d-fix-buffer-overflow-in-ati_2d_blt-CVE-2021-3638.patch (#992726) · 708410b4
  Michael Tokarev authored Sep 29, 2021
  
  708410b4
- refresh uas-add-stream-number-sanity-checks-CVE-2021-3713{.diff=>.patch} from upstream · 07c00535
  Michael Tokarev authored Sep 29, 2021
  
  07c00535
- virtio-net-fix-use-after-unmap-free-for-sg-CVE-2021-3748.patch (#993401) · 05acca84
  Michael Tokarev authored Sep 29, 2021
  
  05acca84
25 Aug, 2021 2 commits
- uas-add-stream-number-sanity-checks-CVE-2021-3713.diff (#992727) · 698f3183
  Michael Tokarev authored Aug 25, 2021
  
  698f3183
- linux-user-elfload-fix-address-calculation-in-fallback-scenario.patch (#988174) · a468fa49
  Michael Tokarev authored Aug 25, 2021
```
This is MR "pu/debian bullseye bug 988174", by Cyril Brulebois.
Discovering work mostly done by Bernhard Übelacker
```
  a468fa49
09 Aug, 2021 1 commit
- usbredir-fix-free-call-CVE-2021-3682.patch (#991911) · 7bca5c07
  Michael Tokarev authored Aug 09, 2021
  
  7bca5c07
18 Jul, 2021 6 commits
- update changelog, upload 5.2+dfsg-11 to unstable · 6b660fdd
  Michael Tokarev authored Jul 18, 2021
  
  6b660fdd
- usb-limit-combined-packets-to-1-MiB-CVE-2021-3527.patch · e280f7b5
  Michael Tokarev authored Jul 18, 2021
```
usb-redir-avoid-dynamic-stack-allocation-CVE-2021-3527.patch
(#988157)
```
  e280f7b5
- ide-atapi-check-logical-block-address-and-read-size-CVE-2020-29443.patch (#983575) · d2c008eb
  Michael Tokarev authored Jul 18, 2021
  
  d2c008eb
- pvrdma-fix-the-ring-init-error-flow-CVE-2021-3608.patch (#990563) · 07fe49fc
  Michael Tokarev authored Jul 18, 2021
  
  07fe49fc
- pvrdma-ensure-correct-input-on-ring-init-CVE-2021-3607.patch (#990564) · 1155c41f
  Michael Tokarev authored Jul 18, 2021
  
  1155c41f
- pvrdma-fix-possible-mremap-overflow-in-pvrdma-device-CVE-2021-3582.patch (#990565) · 270fdd1b
  Michael Tokarev authored Jul 18, 2021
  
  270fdd1b
05 Jul, 2021 1 commit
- i386-acpi-restore-device-paths-for-pre-5.1-vms.patch (#990675) · 6199bc59
  Michael Tokarev authored Jul 05, 2021
  
  6199bc59
16 Apr, 2021 2 commits
- update changelog, upload 5.2+dfsg-10 to unstable · 344a54a9
  Michael Tokarev authored Apr 16, 2021
  
  344a54a9
- fix possible use-after-free in mptsas_free_request (#984449, CVE-2021-3392) · 9c2342eb
  Michael Tokarev authored Apr 16, 2021
  
  9c2342eb
13 Apr, 2021 1 commit
- 5 sdhci fixes from upstream (#986795, CVE-2021-3409, #970937, CVE-2020-17380, CVE-2020-25085) · 607fa85c
  Michael Tokarev authored Apr 13, 2021
  
  607fa85c
17 Mar, 2021 4 commits

update changelog, upload 5.2+dfsg-9 to unstable · 058ab4ec
Michael Tokarev authored Mar 17, 2021

058ab4ec
net-e1000-fail-early-for-evil-descriptor-CVE-2021-20257.patch (#984450) · 9f2c4010
Michael Tokarev authored Mar 17, 2021
```
Fix CVE-2021-20257 from upstream: e1000: infinite loop while processing transmit descriptors
```
9f2c4010

CVE-2021-3416 fix from upstream (#984448) · 15a3aa77

Michael Tokarev authored Mar 17, 2021

Fixes infinite loop in loopback mode of various network devices from upstream:
net-qemu_receive_packet-for-loopback-cadence_gem.patch
net-qemu_receive_packet-for-loopback-dp8393x.patch
net-qemu_receive_packet-for-loopback-e1000.patch
net-qemu_receive_packet-for-loopback-introduce.patch
net-qemu_receive_packet-for-loopback-lan9118.patch
net-qemu_receive_packet-for-loopback-msf2.patch
net-qemu_receive_packet-for-loopback-pcnet.patch
net-qemu_receive_packet-for-loopback-rtl8139.patch
net-qemu_receive_packet-for-loopback-sungem.patch
net-qemu_receive_packet-for-loopback-tx_pkt-iov.patch

15a3aa77

CVE-2021-20263 - implement dropping security.capability xattr (#985083) · 6018bc60

Michael Tokarev authored Mar 17, 2021

This adds two patches from upstream:
virtiofsd-save-error-code-early-at-the-failure-callsite.patch (preparational)
virtiofsd-drop-remapped-security.capability-xattr-as-needed-CVE-2021-20263.patch

6018bc60

15 Mar, 2021 2 commits
- do not make q-s-data dependent on q-s-foo (#985040) · 457c5700
  Michael Tokarev authored Mar 15, 2021
  
  457c5700
- Revert "mention closing of #985040 by the last (5.2+dfsg-7) upload" · 4dcdaeef
  Michael Tokarev authored Mar 15, 2021
```
This reverts commit e8bb0585.
```
  4dcdaeef
14 Mar, 2021 3 commits
- mention closing of #985040 by the last (5.2+dfsg-7) upload · e8bb0585
  Michael Tokarev authored Mar 14, 2021
  
  e8bb0585
- update changelog, upload 5.2+dfsg-8 to unstable · fd802f2d
  Michael Tokarev authored Mar 14, 2021
  
  fd802f2d
- update changelog, upload 5.2+dfsg-7 to unstable · f6c2db78
  Michael Tokarev authored Mar 14, 2021
  
  f6c2db78
02 Mar, 2021 1 commit

do not make qemu-system-common dependent on qemu-system-foo (#983756) · b8933c62

Michael Tokarev authored Mar 02, 2021

we removed modules from qemu-system-common for now, so there's no
need for it to depend on any of qemu-system-foo of the same version.
Among other things this fixes #983756 (which should be fixes some
other way anyway, but it should be ok for now).

b8933c62

16 Feb, 2021 2 commits
- update changelog, upload 5.2+dfsg-6 to unstable · f50f7a39
  Michael Tokarev authored Feb 16, 2021
  
  f50f7a39
- fix the wrong argument order in the linux-user-binfmt patch · 4b4a1b81
  Michael Tokarev authored Feb 16, 2021
  
  4b4a1b81
14 Feb, 2021 6 commits
- deprecate qemu-debootstrap · 9899b172
  Michael Tokarev authored Feb 14, 2021
```
also closes: #901197
```
  9899b172
- update changelog, upload 5.2+dfsg-5 to unstable · 8e4ad09d
  Michael Tokarev authored Feb 14, 2021
  
  8e4ad09d
- 3 virtiofsd patches to fix CVE-2020-35517 (virtiofsd: potential privileged... · 34577511
  Michael Tokarev authored Feb 14, 2021
```
3 virtiofsd patches to fix CVE-2020-35517 (virtiofsd: potential privileged host device access from guest) (#980814)
virtiofsd-extract-lo_do_open-from-lo_open.patch
virtiofsd-optionally-return-inode-pointer-from-lo_do_lookup.patch
virtiofsd-prevent-opening-of-special-files-CVE-2020-35517.patch
```
  34577511
- d/changelog: #959530 is not fixed by 5.2+dfsg-4 · b7465a1e
  Michael Tokarev authored Feb 14, 2021
  
  b7465a1e
- d/rules: ensure b/ subdir exists before building palcode and qboot · a5e6aa9f
  Michael Tokarev authored Feb 14, 2021
  
  a5e6aa9f
- update changelog; upload 5.2+dfsg-4 to unstable · a531e266
  Michael Tokarev authored Feb 14, 2021
  
  a531e266