Author: Ubuntu Git Importer
Author Date: 2019-12-15 05:15:39 UTC

DSC file for 1:4.2-1

Author: Michael Tokarev
Author Date: 2019-12-14 11:07:27 UTC

Import patches-unapplied version 1:4.2-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 8b7a6e4a100447ae2beb39826a3d0de02e046c5d

New changelog entries:
  * new upstream release (4.2.0)
  * removed patches: v4.1.1.diff, enable-pschange-mc-no.patch
  * do not make sgabios.bin executable (lintian)
  * add s390-netboot.img lintian overrides for qemu-system-data
  * build qboot (bios-microvm.bin)
  * build-depend-indep on libc6-dev-i386 for qboot
    (includes some system headers)

Author: Ubuntu Git Importer
Author Date: 2019-11-22 10:10:54 UTC

DSC file for 1:2.11+dfsg-1ubuntu7.21

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:37:44 UTC

Import patches-unapplied version 1:3.1+dfsg-2ubuntu3.7 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: f1c5d4660b5ca426639748ac73fcefe95bca09e4

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:37:44 UTC

Import patches-applied version 1:3.1+dfsg-2ubuntu3.7 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: ca2bb6dc39c0b8f083521f04c145daf318f46146
Unapplied parent: bb5d62349a967de56ed1b56c3b538080466c2d5b

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:37:44 UTC

Import patches-unapplied version 1:3.1+dfsg-2ubuntu3.7 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: f1c5d4660b5ca426639748ac73fcefe95bca09e4

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-unapplied version 1:4.0+dfsg-0ubuntu9.2 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 19a7330b6d571d272990baeb07e8b9aa7ed75255

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-unapplied version 1:4.0+dfsg-0ubuntu9.2 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 19a7330b6d571d272990baeb07e8b9aa7ed75255

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-applied version 1:4.0+dfsg-0ubuntu9.2 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: a8260badb424c04214ea9bed01a644bacf606323
Unapplied parent: 136823d45791cdd72f4a2f5f192ac726ebe97744

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-applied version 1:4.0+dfsg-0ubuntu9.2 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: a8260badb424c04214ea9bed01a644bacf606323
Unapplied parent: 136823d45791cdd72f4a2f5f192ac726ebe97744

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:37:44 UTC

Import patches-applied version 1:3.1+dfsg-2ubuntu3.7 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: ca2bb6dc39c0b8f083521f04c145daf318f46146
Unapplied parent: bb5d62349a967de56ed1b56c3b538080466c2d5b

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-unapplied version 1:4.0+dfsg-0ubuntu9.2 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 19a7330b6d571d272990baeb07e8b9aa7ed75255

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-applied version 1:4.0+dfsg-0ubuntu9.2 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: a8260badb424c04214ea9bed01a644bacf606323
Unapplied parent: 136823d45791cdd72f4a2f5f192ac726ebe97744

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:37:44 UTC

Import patches-applied version 1:3.1+dfsg-2ubuntu3.7 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: ca2bb6dc39c0b8f083521f04c145daf318f46146
Unapplied parent: bb5d62349a967de56ed1b56c3b538080466c2d5b

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:37:44 UTC

Import patches-unapplied version 1:3.1+dfsg-2ubuntu3.7 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: f1c5d4660b5ca426639748ac73fcefe95bca09e4

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)

Author: Michael Tokarev
Author Date: 2019-08-24 12:56:15 UTC

Import patches-unapplied version 1:3.1+dfsg-8+deb10u2 to debian/buster

Imported using git-ubuntu import.

Changelog parent: 8668f26e14e7833f32dd904afba07e4e6527b2b6

New changelog entries:
  * slirp-fix-heap-overflow-in-ip_reass-on-big-packet-input-CVE-2019-14378.patch
    Closes: #933741, CVE-2019-14378 (slirp heap buffer overflow)
  * qemu-bridge-helper-restrict-interface-name-to-IFNAMSIZ-CVE-2019-13164.patch
    Closes: #931351, CVE-2019-13164 (qemu-bridge-helper ifname overflow)
  * linux-user-sanitize-interp_info-for-mips-only.patch
    Closes: #933650 (some mips binaries fails to start)

Author: Steve Beattie
Author Date: 2019-11-08 06:49:36 UTC

Import patches-unapplied version 1:4.0+dfsg-0ubuntu9.1 to ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: 47f2ca308f040c840b63217a89528747d5be15b1

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/u/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/u/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/u/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/u/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/u/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890
  * Add support for exposing "taa-no" flag to guests:
    - d/p/u/CVE-2019-11135-taa-no.patch
    - CVE-2019-11135
  * Add support for exposing "pschange-mc-no" to guests:
    - d/p/u/pschange-mce.patch

Author: Steve Beattie
Author Date: 2019-11-08 06:48:19 UTC

Import patches-unapplied version 1:3.1+dfsg-2ubuntu3.6 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 2162d6e3a354d3db94be8882decd0a15ac2ac16a

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/u/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/u/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/u/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/u/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/u/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890
  * Add support for exposing "taa-no" flag to guests:
    - d/p/u/CVE-2019-11135-taa-no.patch
    - CVE-2019-11135
  * Add support for exposing "pschange-mc-no" to guests:
    - d/p/u/pschange-mce.patch

Author: Steve Beattie
Author Date: 2019-11-04 21:30:56 UTC

Import patches-unapplied version 1:2.5+dfsg-5ubuntu10.42 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 27e314c679fb96a3caab295626f8bdee8688f033

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890

Author: Steve Beattie
Author Date: 2019-11-04 21:30:56 UTC

Import patches-unapplied version 1:2.5+dfsg-5ubuntu10.42 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 27e314c679fb96a3caab295626f8bdee8688f033

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890

Author: Steve Beattie
Author Date: 2019-11-04 21:30:56 UTC

Import patches-applied version 1:2.5+dfsg-5ubuntu10.42 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: c1fa2bd590ef2a632848f2bc68552d70d143e7ff
Unapplied parent: 3c502b016b06dc335ce922844c83cbd5428fc464

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890

Author: Steve Beattie
Author Date: 2019-11-08 06:48:19 UTC

Import patches-applied version 1:3.1+dfsg-2ubuntu3.6 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 81008a713eb4c9b289b73502e5e008eee8363533
Unapplied parent: 430eb6ee005454f611a8a5aab0b4eec9ff874c66

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/u/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/u/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/u/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/u/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/u/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890
  * Add support for exposing "taa-no" flag to guests:
    - d/p/u/CVE-2019-11135-taa-no.patch
    - CVE-2019-11135
  * Add support for exposing "pschange-mc-no" to guests:
    - d/p/u/pschange-mce.patch

Author: Steve Beattie
Author Date: 2019-11-08 06:30:29 UTC

Import patches-unapplied version 1:2.11+dfsg-1ubuntu7.20 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 2cc4ac87c9e15d647ea0a7f95578af6071694ffc

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/u/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/u/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/u/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/u/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/u/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890
  * Add support for exposing "taa-no" flag to guests:
    - d/p/u/CVE-2019-11135-taa-no.patch
    - CVE-2019-11135
  * Add support for exposing "pschange-mc-no" to guests:
    - d/p/u/pschange-mce.patch

Author: Steve Beattie
Author Date: 2019-11-08 06:30:29 UTC

Import patches-applied version 1:2.11+dfsg-1ubuntu7.20 to applied/ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 360f17d79dcbbad45f956dc31ab72a3b00862656
Unapplied parent: 797881f83d9ce04bb6ba2effe76713268eb9cc97

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/u/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/u/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/u/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/u/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/u/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890
  * Add support for exposing "taa-no" flag to guests:
    - d/p/u/CVE-2019-11135-taa-no.patch
    - CVE-2019-11135
  * Add support for exposing "pschange-mc-no" to guests:
    - d/p/u/pschange-mce.patch

Author: Steve Beattie
Author Date: 2019-11-04 21:30:56 UTC

Import patches-unapplied version 1:2.5+dfsg-5ubuntu10.42 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 27e314c679fb96a3caab295626f8bdee8688f033

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890

Author: Steve Beattie
Author Date: 2019-11-04 21:30:56 UTC

Import patches-applied version 1:2.5+dfsg-5ubuntu10.42 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: c1fa2bd590ef2a632848f2bc68552d70d143e7ff
Unapplied parent: 3c502b016b06dc335ce922844c83cbd5428fc464

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890

Author: Steve Beattie
Author Date: 2019-11-08 06:49:36 UTC

Import patches-applied version 1:4.0+dfsg-0ubuntu9.1 to applied/ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: b892e3085d84b5b4ea3d0dab8cc209eef0c7d5eb
Unapplied parent: f231c315c3f6170162168286f8403aa011a07f96

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/u/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/u/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/u/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/u/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/u/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890
  * Add support for exposing "taa-no" flag to guests:
    - d/p/u/CVE-2019-11135-taa-no.patch
    - CVE-2019-11135
  * Add support for exposing "pschange-mc-no" to guests:
    - d/p/u/pschange-mce.patch

Author: Steve Beattie
Author Date: 2019-11-04 21:30:56 UTC

Import patches-applied version 1:2.5+dfsg-5ubuntu10.42 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: c1fa2bd590ef2a632848f2bc68552d70d143e7ff
Unapplied parent: 3c502b016b06dc335ce922844c83cbd5428fc464

New changelog entries:
  * SECURITY UPDATE: infinite loop when executing LSI scsi adapter
    emulator scripts
    - d/p/CVE-2019-12068.patch: Move the existing loop exit
    - CVE-2019-12068
  * SECURITY UPDATE: null pointer dereference in qxl display driver
    - d/p/CVE-2019-12155.patch: qxl: check release info object
    - CVE-2019-12155
  * SECURITY UPDATE: qemu-bridge-helper interface name buffer overflow
    - d/p/CVE-2019-13164.patch: qemu-bridge-helper: restrict
      interface name to IFNAMSIZ
    - CVE-2019-13164
  * SECURITY UPDATE: heap overflow in slirp
    - d/p/CVE-2019-14378.patch: slirp: Fix heap overflow in ip_reass
      on big packet input
    - CVE-2019-14378
  * SECURITY UPDATE: use after free vulnerability in slirp
    - d/p/CVE-2019-15890.patch: slirp: ip_reass: Fix use after free
    - CVE-2019-15890

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-unapplied version 1:4.0+dfsg-0ubuntu10 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Upload parent: d2f7e43c972c9c07192046b147ca3ccbac797079

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-unapplied version 1:4.0+dfsg-0ubuntu10 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Upload parent: d2f7e43c972c9c07192046b147ca3ccbac797079

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-applied version 1:4.0+dfsg-0ubuntu10 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: b892e3085d84b5b4ea3d0dab8cc209eef0c7d5eb
Unapplied parent: 14a5187750f5f2771050b289606055cfcc26298a

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-applied version 1:4.0+dfsg-0ubuntu10 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: b892e3085d84b5b4ea3d0dab8cc209eef0c7d5eb
Unapplied parent: 14a5187750f5f2771050b289606055cfcc26298a

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-applied version 1:4.0+dfsg-0ubuntu10 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: b892e3085d84b5b4ea3d0dab8cc209eef0c7d5eb
Unapplied parent: 14a5187750f5f2771050b289606055cfcc26298a

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-unapplied version 1:4.0+dfsg-0ubuntu10 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Upload parent: d2f7e43c972c9c07192046b147ca3ccbac797079

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-unapplied version 1:4.0+dfsg-0ubuntu10 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Upload parent: d2f7e43c972c9c07192046b147ca3ccbac797079

Author: Christian Ehrhardt 
Author Date: 2019-10-21 12:51:45 UTC

Import patches-applied version 1:4.0+dfsg-0ubuntu10 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: b892e3085d84b5b4ea3d0dab8cc209eef0c7d5eb
Unapplied parent: 14a5187750f5f2771050b289606055cfcc26298a

New changelog entries:
  * d/p/ubuntu/lp-1848556-curl-Handle-success-in-multi_check_completion.patch:
    fix a potential hang when qemu or qemu-img where accessing http backed
    disks via libcurl (LP: #1848556)
  * d/p/u/lp-1848497-virtio-balloon-fix-QEMU-4.0-config-size-migration-in.patch:
    fix migration issue from qemu <4.0 when using virtio-balloon (LP: #1848497)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:23:23 UTC

Import patches-unapplied version 1:2.11+dfsg-1ubuntu7.21 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 334af16d0fa3da003d8e036188a3bbbdf71ae377

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)
  * d/p/u/lp-1847948-*: allow MSIX BAR mapping on VFIO in general and use that
    instead of emulation on ppc64 increasing performance of e.g. NVME
    passthrough (LP: #1847948)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:23:23 UTC

Import patches-unapplied version 1:2.11+dfsg-1ubuntu7.21 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 334af16d0fa3da003d8e036188a3bbbdf71ae377

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)
  * d/p/u/lp-1847948-*: allow MSIX BAR mapping on VFIO in general and use that
    instead of emulation on ppc64 increasing performance of e.g. NVME
    passthrough (LP: #1847948)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:23:23 UTC

Import patches-applied version 1:2.11+dfsg-1ubuntu7.21 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: b6418a4b0e3498e6b3187b659c3bb53b1051c8dd
Unapplied parent: f2d76d881c57ac13a4721ebbd7a66cb554f58ab6

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)
  * d/p/u/lp-1847948-*: allow MSIX BAR mapping on VFIO in general and use that
    instead of emulation on ppc64 increasing performance of e.g. NVME
    passthrough (LP: #1847948)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:23:23 UTC

Import patches-unapplied version 1:2.11+dfsg-1ubuntu7.21 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 334af16d0fa3da003d8e036188a3bbbdf71ae377

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)
  * d/p/u/lp-1847948-*: allow MSIX BAR mapping on VFIO in general and use that
    instead of emulation on ppc64 increasing performance of e.g. NVME
    passthrough (LP: #1847948)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:23:23 UTC

Import patches-applied version 1:2.11+dfsg-1ubuntu7.21 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: b6418a4b0e3498e6b3187b659c3bb53b1051c8dd
Unapplied parent: f2d76d881c57ac13a4721ebbd7a66cb554f58ab6

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)
  * d/p/u/lp-1847948-*: allow MSIX BAR mapping on VFIO in general and use that
    instead of emulation on ppc64 increasing performance of e.g. NVME
    passthrough (LP: #1847948)

Author: Christian Ehrhardt 
Author Date: 2019-10-15 09:23:23 UTC

Import patches-applied version 1:2.11+dfsg-1ubuntu7.21 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: b6418a4b0e3498e6b3187b659c3bb53b1051c8dd
Unapplied parent: f2d76d881c57ac13a4721ebbd7a66cb554f58ab6

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)
  * d/p/u/lp-1847948-*: allow MSIX BAR mapping on VFIO in general and use that
    instead of emulation on ppc64 increasing performance of e.g. NVME
    passthrough (LP: #1847948)

Author: Christian Ehrhardt 
Author Date: 2019-09-24 09:42:58 UTC

Import patches-applied version 1:4.0+dfsg-0ubuntu9 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 27ac4a96db045f0712b8071ae9d31da17aab7df4
Unapplied parent: 802f9f8d97047e9020ac58e36bd0bc5f0ebfeec7

New changelog entries:
  * d/p/lp-1842774-s390x-cpumodel-Add-the-z15-name-to-the-description-o.patch:
    update the z15 model name (LP: #1842774)

Author: Christian Ehrhardt 
Author Date: 2019-09-24 09:42:58 UTC

Import patches-unapplied version 1:4.0+dfsg-0ubuntu9 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Upload parent: c1a855ad86dd5997ad8e38f15805b41184236133

Author: Michael Tokarev
Author Date: 2019-08-09 10:41:43 UTC

Import patches-unapplied version 1:2.8+dfsg-6+deb9u8 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 8c29ac806f785a98bc5489194c9d46bcd3508022

New changelog entries:
  [ Michal Arbet ]
  * Fix improper backport of CVE-2017-9524 fix that caused NBD
    connections to hang (Closes: #873012). Thanks to Geoffrey Thomas.
    - nbd-fully-initialize-client-in-case-of-failed-negotiation-CVE-2017-9524.patch:
      Don't move nbd_set_handlers before nbd_negotiate.
    - nbd-fix-regression-on-resiliency-to-port-scan-CVE-2017-9524.patch:
      Refresh.
  [ Michael Tokarev ]
  * slirp-fix-heap-overflow-in-ip_reass-on-big-packet-input-CVE-2019-14378.patch
    bugfix in user-level networking
    Closes: #933741, CVE-2019-14378
  * qemu-bridge-helper-restrict-interface-name-to-IFNAMSIZ-CVE-2019-13164.patch
    Closes: #931351, CVE-2019-13164
  * integrate fix-md-clear-backport.patch into enable-md-clear.patch
    Thanks Moritz Mühlenhoff and Vincent Tondellier
  * device_tree-dont-use-load_image-CVE-2018-20815.patch
    fix unlikely overflow via saved image file size
    Closes: CVE-2018-20815
  * Fix the md_clear backport, thanks to Vincent Tondellier (Closes: #929067)
  [ Moritz Mühlenhoff <jmm@debian.org> ]
  * slirp-correct-size-computation-concatenating-mbuf-CVE-2018-11806.patch
    (Closes: #901017, CVE-2018-11806)
  * qga-check-bytes-count-read-by-guest-file-read-CVE-2018-12617.patch
    (Closes: #902725, CVE-2018-12617)
  * usb-mtp-use-O_NOFOLLOW-and-O_CLOEXEC-CVE-2018-16872.patch
    (Closes: #916397, CVE-2018-16872)
  * rtl8139-fix-possible-out-of-bound-access-CVE-2018-17958.patch
    (Closes: #911499, CVE-2018-17958)
  * lsi53c895a-check-message-length-value-is-valid-CVE-2018-18849.patch
    (Closes: #912535, CVE-2018-18849)
  * ppc-pnv-check-size-before-data-buffer-access-CVE-2018-18954.patch
    (Closes: #914604, CVE-2018-18954)
  * 9p-write-lock-path-in-v9fs-co_open2.patch
    9p-take-write-lock-on-fid-path-updates-CVE-2018-19364.patch
    (Closes: #914599, CVE-2018-19364)
  * 9p-fix-QEMU-crash-when-renaming-files-CVE-2018-19489.patch
    (Closes: #914727, CVE-2018-19489)
  * i2c-ddc-fix-oob-read-CVE-2019-3812.patch
    (Closes: #922635, CVE-2019-3812)
  * slirp-check-data-length-while-emulating-ident-function-CVE-2019-6778.patch
    (Closes: #921525, CVE-2019-6778)
  * slirp-check-sscanf-result-when-emulating-ident-CVE-2019-9824.patch
    (Closes: CVE-2019-9824)
  [ Michael Tokarev ]
  * enable-md-clear.patch
    define new CPUID for MDS
    (Closes: #929067)
    (Closes: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)
  * qxl-check-release-info-object-CVE-2019-12155.patch
    fixes null-pointer deref in qxl cleanup code
    (Closes: #929353, CVE-2019-12155)

Author: Christian Ehrhardt 
Author Date: 2019-07-04 12:47:56 UTC

Import patches-applied version 1:2.5+dfsg-5ubuntu10.41 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 013ff1d13540657048c659fcd94d534a59423be1
Unapplied parent: 6b2a96a1c1ee957bbbaa57ea45c3960694c5a7d1

New changelog entries:
  * d/p/ubuntu/lp-1830243-s390-bios-Skip-bootmap-signature-entries.patch:
    tolerate guests with secure boot loaders (LP: #1830243)

Author: Christian Ehrhardt 
Author Date: 2019-07-04 12:47:56 UTC

Import patches-unapplied version 1:2.5+dfsg-5ubuntu10.41 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 8fdaefe5beea1ea8dd77292aa699aabbdcc1c859

New changelog entries:
  * d/p/ubuntu/lp-1830243-s390-bios-Skip-bootmap-signature-entries.patch:
    tolerate guests with secure boot loaders (LP: #1830243)

Author: Christian Ehrhardt 
Author Date: 2019-05-28 08:49:09 UTC

Import patches-unapplied version 1:2.12+dfsg-3ubuntu8.9 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: e8806fa92a0bc01654ecda99ea1a474b935e41f7

New changelog entries:
  * d/p/ubuntu/define-ubuntu-machine-types.patch: fix wily machine type being
    broken since 2.11 due to 2.3/2.4 version mismatch in its definition to
    fix migrations from old machines (LP: #1829868).
  * d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
    toleration for future machines (LP: #1830704

Author: Christian Ehrhardt 
Author Date: 2019-05-28 08:49:09 UTC

Import patches-unapplied version 1:2.12+dfsg-3ubuntu8.9 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: e8806fa92a0bc01654ecda99ea1a474b935e41f7

New changelog entries:
  * d/p/ubuntu/define-ubuntu-machine-types.patch: fix wily machine type being
    broken since 2.11 due to 2.3/2.4 version mismatch in its definition to
    fix migrations from old machines (LP: #1829868).
  * d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
    toleration for future machines (LP: #1830704

Author: Christian Ehrhardt 
Author Date: 2019-05-28 08:49:09 UTC

Import patches-unapplied version 1:2.12+dfsg-3ubuntu8.9 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: e8806fa92a0bc01654ecda99ea1a474b935e41f7

New changelog entries:
  * d/p/ubuntu/define-ubuntu-machine-types.patch: fix wily machine type being
    broken since 2.11 due to 2.3/2.4 version mismatch in its definition to
    fix migrations from old machines (LP: #1829868).
  * d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
    toleration for future machines (LP: #1830704

Author: Christian Ehrhardt 
Author Date: 2019-05-28 08:49:09 UTC

Import patches-applied version 1:2.12+dfsg-3ubuntu8.9 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: a688ffd38abca9669d74c650c635926120449a4f
Unapplied parent: cb0b5bc4b4000e6ae96b925eea7d135fc2fb9aad

New changelog entries:
  * d/p/ubuntu/define-ubuntu-machine-types.patch: fix wily machine type being
    broken since 2.11 due to 2.3/2.4 version mismatch in its definition to
    fix migrations from old machines (LP: #1829868).
  * d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
    toleration for future machines (LP: #1830704

Author: Christian Ehrhardt 
Author Date: 2019-05-28 08:49:09 UTC

Import patches-applied version 1:2.12+dfsg-3ubuntu8.9 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: a688ffd38abca9669d74c650c635926120449a4f
Unapplied parent: cb0b5bc4b4000e6ae96b925eea7d135fc2fb9aad

New changelog entries:
  * d/p/ubuntu/define-ubuntu-machine-types.patch: fix wily machine type being
    broken since 2.11 due to 2.3/2.4 version mismatch in its definition to
    fix migrations from old machines (LP: #1829868).
  * d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
    toleration for future machines (LP: #1830704

Author: Christian Ehrhardt 
Author Date: 2019-05-28 08:49:09 UTC

Import patches-applied version 1:2.12+dfsg-3ubuntu8.9 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: a688ffd38abca9669d74c650c635926120449a4f
Unapplied parent: cb0b5bc4b4000e6ae96b925eea7d135fc2fb9aad

New changelog entries:
  * d/p/ubuntu/define-ubuntu-machine-types.patch: fix wily machine type being
    broken since 2.11 due to 2.3/2.4 version mismatch in its definition to
    fix migrations from old machines (LP: #1829868).
  * d/p/ubuntu/lp-1830704-s390x-cpumodel-ignore-csske-for-expansion.patch
    toleration for future machines (LP: #1830704

Author: Balint Reczey
Author Date: 2019-05-23 13:09:48 UTC

Import patches-unapplied version 1:2.12+dfsg-3ubuntu8.8 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 6994deacb3b0d6c3ca715aa4dcad1ed1f71681fc

New changelog entries:
  * Add qemu-guest-agent Breaks: for unattended-upgrades versions not being
    able to install it to avoid qemu-guest-agent blocking other security
    updates. (LP: #1823872)

Author: Balint Reczey
Author Date: 2019-05-23 13:09:48 UTC

Import patches-applied version 1:2.12+dfsg-3ubuntu8.8 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 016216639f7d89a5a6899801dd386363862b82a7
Unapplied parent: 879e848360b8478f3dd817a30835e98d658e310b

New changelog entries:
  * Add qemu-guest-agent Breaks: for unattended-upgrades versions not being
    able to install it to avoid qemu-guest-agent blocking other security
    updates. (LP: #1823872)

Author: Steve Beattie
Author Date: 2019-05-09 06:59:48 UTC

Import patches-applied version 2.0.0+dfsg-2ubuntu1.46 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 000f982d56631223df78bdf6a0b7689cf09ea205
Unapplied parent: 8a7b21ebf4af76f20b33f81b06f2daa89959fa14

New changelog entries:
  * SECURITY UPDATE: Add support for exposing md-clear functionality
    to guests
    - d/p/ubuntu/enable-md-clear.patch
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
  * SECURITY UPDATE: heap overflow when loading device tree blob
    - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
      copy the device tree blob into is.
    - d/p/ubuntu/CVE-2018-20815-prereq-1.patch: Add load_image_size()
      to replace load_image()
    - d/p/ubuntu/CVE-2018-20815-prereq-2.patch: Read as long as possible
      in load_image_size()
    - CVE-2018-20815
  * SECURITY UPDATE: information leak in SLiRP
    - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
      emulating ident.
    - CVE-2019-9824

Author: Steve Beattie
Author Date: 2019-05-09 06:59:48 UTC

Import patches-unapplied version 2.0.0+dfsg-2ubuntu1.46 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: a67da34e12b6e72606f6faa3bd4af1509ffdf8fa

New changelog entries:
  * SECURITY UPDATE: Add support for exposing md-clear functionality
    to guests
    - d/p/ubuntu/enable-md-clear.patch
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
  * SECURITY UPDATE: heap overflow when loading device tree blob
    - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
      copy the device tree blob into is.
    - d/p/ubuntu/CVE-2018-20815-prereq-1.patch: Add load_image_size()
      to replace load_image()
    - d/p/ubuntu/CVE-2018-20815-prereq-2.patch: Read as long as possible
      in load_image_size()
    - CVE-2018-20815
  * SECURITY UPDATE: information leak in SLiRP
    - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
      emulating ident.
    - CVE-2019-9824

Author: Steve Beattie
Author Date: 2019-05-09 06:59:48 UTC

Import patches-unapplied version 2.0.0+dfsg-2ubuntu1.46 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: a67da34e12b6e72606f6faa3bd4af1509ffdf8fa

New changelog entries:
  * SECURITY UPDATE: Add support for exposing md-clear functionality
    to guests
    - d/p/ubuntu/enable-md-clear.patch
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
  * SECURITY UPDATE: heap overflow when loading device tree blob
    - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
      copy the device tree blob into is.
    - d/p/ubuntu/CVE-2018-20815-prereq-1.patch: Add load_image_size()
      to replace load_image()
    - d/p/ubuntu/CVE-2018-20815-prereq-2.patch: Read as long as possible
      in load_image_size()
    - CVE-2018-20815
  * SECURITY UPDATE: information leak in SLiRP
    - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
      emulating ident.
    - CVE-2019-9824

Author: Steve Beattie
Author Date: 2019-05-09 06:59:48 UTC

Import patches-applied version 2.0.0+dfsg-2ubuntu1.46 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 000f982d56631223df78bdf6a0b7689cf09ea205
Unapplied parent: 8a7b21ebf4af76f20b33f81b06f2daa89959fa14

New changelog entries:
  * SECURITY UPDATE: Add support for exposing md-clear functionality
    to guests
    - d/p/ubuntu/enable-md-clear.patch
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
  * SECURITY UPDATE: heap overflow when loading device tree blob
    - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
      copy the device tree blob into is.
    - d/p/ubuntu/CVE-2018-20815-prereq-1.patch: Add load_image_size()
      to replace load_image()
    - d/p/ubuntu/CVE-2018-20815-prereq-2.patch: Read as long as possible
      in load_image_size()
    - CVE-2018-20815
  * SECURITY UPDATE: information leak in SLiRP
    - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
      emulating ident.
    - CVE-2019-9824

Author: Steve Beattie
Author Date: 2019-05-09 06:59:48 UTC

Import patches-applied version 2.0.0+dfsg-2ubuntu1.46 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 000f982d56631223df78bdf6a0b7689cf09ea205
Unapplied parent: 8a7b21ebf4af76f20b33f81b06f2daa89959fa14

New changelog entries:
  * SECURITY UPDATE: Add support for exposing md-clear functionality
    to guests
    - d/p/ubuntu/enable-md-clear.patch
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
  * SECURITY UPDATE: heap overflow when loading device tree blob
    - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
      copy the device tree blob into is.
    - d/p/ubuntu/CVE-2018-20815-prereq-1.patch: Add load_image_size()
      to replace load_image()
    - d/p/ubuntu/CVE-2018-20815-prereq-2.patch: Read as long as possible
      in load_image_size()
    - CVE-2018-20815
  * SECURITY UPDATE: information leak in SLiRP
    - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
      emulating ident.
    - CVE-2019-9824

Author: Steve Beattie
Author Date: 2019-05-09 06:59:48 UTC

Import patches-unapplied version 2.0.0+dfsg-2ubuntu1.46 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: a67da34e12b6e72606f6faa3bd4af1509ffdf8fa

New changelog entries:
  * SECURITY UPDATE: Add support for exposing md-clear functionality
    to guests
    - d/p/ubuntu/enable-md-clear.patch
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
  * SECURITY UPDATE: heap overflow when loading device tree blob
    - d/p/ubuntu/CVE-2018-20815.patch: specify how large the buffer to
      copy the device tree blob into is.
    - d/p/ubuntu/CVE-2018-20815-prereq-1.patch: Add load_image_size()
      to replace load_image()
    - d/p/ubuntu/CVE-2018-20815-prereq-2.patch: Read as long as possible
      in load_image_size()
    - CVE-2018-20815
  * SECURITY UPDATE: information leak in SLiRP
    - d/p/ubuntu/CVE-2019-9824.patch: check sscanf result when
      emulating ident.
    - CVE-2019-9824

Author: Christian Ehrhardt 
Author Date: 2019-03-18 08:20:07 UTC

Import patches-unapplied version 1:3.1+dfsg-2ubuntu3 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 994adb63a9522a7c30da2f0568193bd51ce9fa9d

New changelog entries:
  * qemu-guest-agent: fix path of fsfreeze-hook (LP: #1820291)
    - d/qemu-guest-agent.install: use correct path for fsfreeze-hook
    - d/qemu-guest-agent.pre{rm|inst}/.postrm: special handling for
      mv_conffile since the new path is a directory in the old package
      version which can not be handled by mv_conffile.
  * i2c-ddc-fix-oob-read-CVE-2019-3812.patch fixes
    OOB read in hw/i2c/i2c-ddc.c which allows for memory disclosure.
    Closes: #922635 (Thanks to Gerd Hoffmann and Michael Tokarev)
    CVE-2019-3812

Author: Christian Ehrhardt 
Author Date: 2019-03-18 08:20:07 UTC

Import patches-applied version 1:3.1+dfsg-2ubuntu3 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: fd1cb94e1603f4e621e6993d0d69fca2b99de993
Unapplied parent: fb9c17d68dbe4b490035570d5a93084df056229e

New changelog entries:
  * qemu-guest-agent: fix path of fsfreeze-hook (LP: #1820291)
    - d/qemu-guest-agent.install: use correct path for fsfreeze-hook
    - d/qemu-guest-agent.pre{rm|inst}/.postrm: special handling for
      mv_conffile since the new path is a directory in the old package
      version which can not be handled by mv_conffile.
  * i2c-ddc-fix-oob-read-CVE-2019-3812.patch fixes
    OOB read in hw/i2c/i2c-ddc.c which allows for memory disclosure.
    Closes: #922635 (Thanks to Gerd Hoffmann and Michael Tokarev)
    CVE-2019-3812

Author: Christian Ehrhardt 
Author Date: 2018-10-17 08:50:27 UTC

Import patches-applied version 1:2.12+dfsg-3ubuntu8 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: cb289973b6df96aed8d1c73874987394ba5b552d
Unapplied parent: 5251f540a45419b9da879c1a81ec29330e05d5c8

New changelog entries:
  * d/control-in: our addition of a qemu-system-s390x package needs to follow
    the split of qemu-system-data by adding a dependency to it (LP: #1798084)

Author: Christian Ehrhardt 
Author Date: 2018-10-17 08:50:27 UTC

Import patches-unapplied version 1:2.12+dfsg-3ubuntu8 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: a53501ae64b5a12ce72b97832091161d15e2af91

New changelog entries:
  * d/control-in: our addition of a qemu-system-s390x package needs to follow
    the split of qemu-system-data by adding a dependency to it (LP: #1798084)

Author: Marc Deslauriers
Author Date: 2018-05-23 11:59:37 UTC

Import patches-applied version 1:2.10+dfsg-0ubuntu3.8 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 174f498d2f04e80fa5b8054f1ff11603ff85da32
Unapplied parent: b5f2da9f7da9ecb48fe5ac394a04e960a854da94

New changelog entries:
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-2.patch: define the AMD 'virt-ssbd'
      CPUID feature bit in target/i386/cpu.c.
    - debian/patches/CVE-2018-3639-3.patch: define the Virt SSBD MSR and
      handling of it in target/i386/cpu.h, target/i386/kvm.c,
      target/i386/machine.c.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 11:59:37 UTC

Import patches-applied version 1:2.10+dfsg-0ubuntu3.8 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 174f498d2f04e80fa5b8054f1ff11603ff85da32
Unapplied parent: b5f2da9f7da9ecb48fe5ac394a04e960a854da94

New changelog entries:
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-2.patch: define the AMD 'virt-ssbd'
      CPUID feature bit in target/i386/cpu.c.
    - debian/patches/CVE-2018-3639-3.patch: define the Virt SSBD MSR and
      handling of it in target/i386/cpu.h, target/i386/kvm.c,
      target/i386/machine.c.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 11:59:37 UTC

Import patches-unapplied version 1:2.10+dfsg-0ubuntu3.8 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 8afa45fcebceda42d434e00218d3efe12c7de048

New changelog entries:
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-2.patch: define the AMD 'virt-ssbd'
      CPUID feature bit in target/i386/cpu.c.
    - debian/patches/CVE-2018-3639-3.patch: define the Virt SSBD MSR and
      handling of it in target/i386/cpu.h, target/i386/kvm.c,
      target/i386/machine.c.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 11:59:37 UTC

Import patches-unapplied version 1:2.10+dfsg-0ubuntu3.8 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 8afa45fcebceda42d434e00218d3efe12c7de048

New changelog entries:
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-2.patch: define the AMD 'virt-ssbd'
      CPUID feature bit in target/i386/cpu.c.
    - debian/patches/CVE-2018-3639-3.patch: define the Virt SSBD MSR and
      handling of it in target/i386/cpu.h, target/i386/kvm.c,
      target/i386/machine.c.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 11:59:37 UTC

Import patches-unapplied version 1:2.10+dfsg-0ubuntu3.8 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 8afa45fcebceda42d434e00218d3efe12c7de048

New changelog entries:
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-2.patch: define the AMD 'virt-ssbd'
      CPUID feature bit in target/i386/cpu.c.
    - debian/patches/CVE-2018-3639-3.patch: define the Virt SSBD MSR and
      handling of it in target/i386/cpu.h, target/i386/kvm.c,
      target/i386/machine.c.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 11:59:37 UTC

Import patches-applied version 1:2.10+dfsg-0ubuntu3.8 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 174f498d2f04e80fa5b8054f1ff11603ff85da32
Unapplied parent: b5f2da9f7da9ecb48fe5ac394a04e960a854da94

New changelog entries:
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-2.patch: define the AMD 'virt-ssbd'
      CPUID feature bit in target/i386/cpu.c.
    - debian/patches/CVE-2018-3639-3.patch: define the Virt SSBD MSR and
      handling of it in target/i386/cpu.h, target/i386/kvm.c,
      target/i386/machine.c.
    - CVE-2018-3639

Author: Christian Ehrhardt 
Author Date: 2018-04-11 05:46:18 UTC

Import patches-applied version 1:2.11+dfsg-1ubuntu7 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 00c0e1e1760ec5a8b95914064a31745be38db84a
Unapplied parent: 06ab4363dbfee7d66513c6ff2febf4c8788997f7

New changelog entries:
  * d/p/ubuntu/lp-1762854-*: fix issue with SCSI-2 devices denying Protection
    information (LP: #1762854).
  * d/p/ubuntu/lp-1763468-*: fix VSMT handling to fix ppc64el P8/P9 migration
    (LP: #1763468).

Author: Christian Ehrhardt 
Author Date: 2018-04-11 05:46:18 UTC

Import patches-unapplied version 1:2.11+dfsg-1ubuntu7 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: f3e429320ae650987f0e1a74eea68e78af38e483

New changelog entries:
  * d/p/ubuntu/lp-1762854-*: fix issue with SCSI-2 devices denying Protection
    information (LP: #1762854).
  * d/p/ubuntu/lp-1763468-*: fix VSMT handling to fix ppc64el P8/P9 migration
    (LP: #1763468).

Author: Ubuntu Git Importer
Author Date: 2018-03-09 12:00:10 UTC

pristine-tar data for qemu_2.10+dfsg.orig.tar.xz

Author: Ubuntu Git Importer
Author Date: 2018-03-08 13:59:22 UTC

pristine-tar data for qemu_2.10.0+dfsg.orig.tar.xz

Author: Christian Ehrhardt 
Author Date: 2017-11-15 06:49:33 UTC

Import patches-unapplied version 1:2.10+dfsg-0ubuntu3.1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: a9acb42522590940627515e51bab699216f9de33

New changelog entries:
  * d/p/detect-ITS-and-skip-usage-on-older-kernel.patch to avoid crashes
    on arm64 when doing suspend/resume and reboots due to older kernels not
    supporting ITS (LP: #1731051).

Author: Christian Ehrhardt 
Author Date: 2017-11-15 06:49:33 UTC

Import patches-applied version 1:2.10+dfsg-0ubuntu3.1 to applied/ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: c76814aa8170a417440e86ae37716a3696fc6445
Unapplied parent: b83241f70315d00720cd51a668fa2a5c436bd257

New changelog entries:
  * d/p/detect-ITS-and-skip-usage-on-older-kernel.patch to avoid crashes
    on arm64 when doing suspend/resume and reboots due to older kernels not
    supporting ITS (LP: #1731051).

Author: dann frazier
Author Date: 2017-11-14 15:27:31 UTC

Import patches-applied version 1:2.8+dfsg-3ubuntu2.8 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 05a016ae7d572a91a18515f921e1f35fa4652773
Unapplied parent: 45e1f750b37b989c54e121e34b7883c77303a126

New changelog entries:
  * Backport support for GICv3/vITS save/restore (LP: #1710019).

Author: dann frazier
Author Date: 2017-11-14 15:27:31 UTC

Import patches-unapplied version 1:2.8+dfsg-3ubuntu2.8 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 7ebc0b24670164f3e5528728beb5d32651b302ce

New changelog entries:
  * Backport support for GICv3/vITS save/restore (LP: #1710019).

Author: dann frazier
Author Date: 2017-11-14 15:27:31 UTC

Import patches-unapplied version 1:2.8+dfsg-3ubuntu2.8 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 7ebc0b24670164f3e5528728beb5d32651b302ce

New changelog entries:
  * Backport support for GICv3/vITS save/restore (LP: #1710019).

Author: dann frazier
Author Date: 2017-11-14 15:27:31 UTC

Import patches-applied version 1:2.8+dfsg-3ubuntu2.8 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 05a016ae7d572a91a18515f921e1f35fa4652773
Unapplied parent: 45e1f750b37b989c54e121e34b7883c77303a126

New changelog entries:
  * Backport support for GICv3/vITS save/restore (LP: #1710019).

Author: Christian Ehrhardt 
Author Date: 2017-10-18 14:17:34 UTC

Import patches-applied version 1:2.8+dfsg-3ubuntu2.7 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 43f84c94f73b65ad614d536ba51fdd50a2b1c18c
Unapplied parent: fa87c8cb99a8a9655098405b0a9379edbb595103

New changelog entries:
  * d/p/ubuntu/virtio-Fix-no-interrupt-when-not-creating-msi-contro.patch:
    on Arm fix no interrupt when not creating msi controller. That fixes
    broken networking if running with virtio-mmio only (LP: #1719196).

Author: Christian Ehrhardt 
Author Date: 2017-10-18 14:17:34 UTC

Import patches-unapplied version 1:2.8+dfsg-3ubuntu2.7 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 25408e7560939491216d36f5e5aa9025d1fee489

New changelog entries:
  * d/p/ubuntu/virtio-Fix-no-interrupt-when-not-creating-msi-contro.patch:
    on Arm fix no interrupt when not creating msi controller. That fixes
    broken networking if running with virtio-mmio only (LP: #1719196).

Author: Christian Ehrhardt 
Author Date: 2017-10-16 09:28:39 UTC

Import patches-unapplied version 1:2.10+dfsg-0ubuntu3 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: fb5d22e94d2416235f8d15c1af22dadb07a946ab

New changelog entries:
  * fix enablement of qemu-kvm service (LP: #1720397)
    - rename d/qemu-kvm.service to d/qemu-system-common.qemu-kvm.service
    - d/rules: add proper enablement debhelper calls
    - d/qemu-system-common.install: install covered by dh_installinit

Author: Christian Ehrhardt 
Author Date: 2017-10-16 09:28:39 UTC

Import patches-applied version 1:2.10+dfsg-0ubuntu3 to applied/ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 9d7d830dcce3f714c51295331015d937ef52acce
Unapplied parent: 56dae978854b5c6568cd921f300866727edf9d96

New changelog entries:
  * fix enablement of qemu-kvm service (LP: #1720397)
    - rename d/qemu-kvm.service to d/qemu-system-common.qemu-kvm.service
    - d/rules: add proper enablement debhelper calls
    - d/qemu-system-common.install: install covered by dh_installinit

Author: Marc Deslauriers
Author Date: 2017-09-20 11:22:48 UTC

Import patches-applied version 1:2.8+dfsg-3ubuntu2.5 to applied/ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 72604cec8b06daae91146f2fa3d878a51fbc6cb0
Unapplied parent: be172316a987f230a98e44c603e44fba132152b8

New changelog entries:
  * SECURITY REGRESSION: regression in in USB xHCI emulation (LP: #1718222)
    - debian/patches/CVE-2017-9375-regression.patch: don't kick in
      xhci_submit and xhci_fire_ctl_transfer in hw/usb/hcd-xhci.c.

Author: Marc Deslauriers
Author Date: 2017-09-20 11:22:48 UTC

Import patches-unapplied version 1:2.8+dfsg-3ubuntu2.5 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 8dd70ef4fc37e45736ca4783cc4c8f3a848421b0

New changelog entries:
  * SECURITY REGRESSION: regression in in USB xHCI emulation (LP: #1718222)
    - debian/patches/CVE-2017-9375-regression.patch: don't kick in
      xhci_submit and xhci_fire_ctl_transfer in hw/usb/hcd-xhci.c.

Author: Marc Deslauriers
Author Date: 2017-05-10 13:32:19 UTC

Import patches-applied version 1:2.6.1+dfsg-0ubuntu5.5 to applied/ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: 750d5317cd878a8d9c18250da946f033b0b86cab
Unapplied parent: 4e6fdad20d2038cbf416f6a358d2aaa4b89fdbcc

New changelog entries:
  * SECURITY UPDATE: denial of service via leak in virtFS
    - debian/patches/CVE-2017-7377.patch: fix file descriptor leak in
      hw/9pfs/9p.c.
    - CVE-2017-7377
  * SECURITY UPDATE: denial of service in cirrus_vga
    - debian/patches/CVE-2017-7718.patch: check parameters in
      hw/display/cirrus_vga_rop.h.
    - CVE-2017-7718
  * SECURITY UPDATE: code execution via cirrus_vga OOB r/w
    - debian/patches/CVE-2017-7980-1.patch: handle negative pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-2.patch: allow zero source pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-3.patch: fix blit address mask handling
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-4.patch: fix patterncopy checks in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-5.patch: revert allow zero source pitch
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-6.patch: stop passing around dst
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-7.patch: stop passing around src
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-8.patch: fix off-by-one in
      hw/display/cirrus_vga_rop.h.
    - debian/patches/CVE-2017-7980-9.patch: fix cirrus_invalidate_region in
      hw/display/cirrus_vga.c.
    - CVE-2017-7980
  * SECURITY UPDATE: denial of service via memory leak in virtFS
    - debian/patches/CVE-2017-8086.patch: fix leak in hw/9pfs/9p-xattr.c.
    - CVE-2017-8086
  * SECURITY UPDATE: denial of service via leak in audio
    - debian/patches/CVE-2017-8309.patch: release capture buffers in
      audio/audio.c.
    - CVE-2017-8309
  * SECURITY UPDATE: denial of service via leak in keyboard
    - debian/patches/CVE-2017-8379-1.patch: limit kbd queue depth in
      ui/input.c.
    - debian/patches/CVE-2017-8379-2.patch: don't queue delay if paused in
      ui/input.c.
    - CVE-2017-8379

Author: Marc Deslauriers
Author Date: 2017-05-10 13:32:19 UTC

Import patches-applied version 1:2.6.1+dfsg-0ubuntu5.5 to applied/ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: 750d5317cd878a8d9c18250da946f033b0b86cab
Unapplied parent: 4e6fdad20d2038cbf416f6a358d2aaa4b89fdbcc

New changelog entries:
  * SECURITY UPDATE: denial of service via leak in virtFS
    - debian/patches/CVE-2017-7377.patch: fix file descriptor leak in
      hw/9pfs/9p.c.
    - CVE-2017-7377
  * SECURITY UPDATE: denial of service in cirrus_vga
    - debian/patches/CVE-2017-7718.patch: check parameters in
      hw/display/cirrus_vga_rop.h.
    - CVE-2017-7718
  * SECURITY UPDATE: code execution via cirrus_vga OOB r/w
    - debian/patches/CVE-2017-7980-1.patch: handle negative pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-2.patch: allow zero source pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-3.patch: fix blit address mask handling
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-4.patch: fix patterncopy checks in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-5.patch: revert allow zero source pitch
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-6.patch: stop passing around dst
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-7.patch: stop passing around src
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-8.patch: fix off-by-one in
      hw/display/cirrus_vga_rop.h.
    - debian/patches/CVE-2017-7980-9.patch: fix cirrus_invalidate_region in
      hw/display/cirrus_vga.c.
    - CVE-2017-7980
  * SECURITY UPDATE: denial of service via memory leak in virtFS
    - debian/patches/CVE-2017-8086.patch: fix leak in hw/9pfs/9p-xattr.c.
    - CVE-2017-8086
  * SECURITY UPDATE: denial of service via leak in audio
    - debian/patches/CVE-2017-8309.patch: release capture buffers in
      audio/audio.c.
    - CVE-2017-8309
  * SECURITY UPDATE: denial of service via leak in keyboard
    - debian/patches/CVE-2017-8379-1.patch: limit kbd queue depth in
      ui/input.c.
    - debian/patches/CVE-2017-8379-2.patch: don't queue delay if paused in
      ui/input.c.
    - CVE-2017-8379

Author: Marc Deslauriers
Author Date: 2017-05-10 13:32:19 UTC

Import patches-applied version 1:2.6.1+dfsg-0ubuntu5.5 to applied/ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: 750d5317cd878a8d9c18250da946f033b0b86cab
Unapplied parent: 4e6fdad20d2038cbf416f6a358d2aaa4b89fdbcc

New changelog entries:
  * SECURITY UPDATE: denial of service via leak in virtFS
    - debian/patches/CVE-2017-7377.patch: fix file descriptor leak in
      hw/9pfs/9p.c.
    - CVE-2017-7377
  * SECURITY UPDATE: denial of service in cirrus_vga
    - debian/patches/CVE-2017-7718.patch: check parameters in
      hw/display/cirrus_vga_rop.h.
    - CVE-2017-7718
  * SECURITY UPDATE: code execution via cirrus_vga OOB r/w
    - debian/patches/CVE-2017-7980-1.patch: handle negative pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-2.patch: allow zero source pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-3.patch: fix blit address mask handling
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-4.patch: fix patterncopy checks in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-5.patch: revert allow zero source pitch
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-6.patch: stop passing around dst
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-7.patch: stop passing around src
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-8.patch: fix off-by-one in
      hw/display/cirrus_vga_rop.h.
    - debian/patches/CVE-2017-7980-9.patch: fix cirrus_invalidate_region in
      hw/display/cirrus_vga.c.
    - CVE-2017-7980
  * SECURITY UPDATE: denial of service via memory leak in virtFS
    - debian/patches/CVE-2017-8086.patch: fix leak in hw/9pfs/9p-xattr.c.
    - CVE-2017-8086
  * SECURITY UPDATE: denial of service via leak in audio
    - debian/patches/CVE-2017-8309.patch: release capture buffers in
      audio/audio.c.
    - CVE-2017-8309
  * SECURITY UPDATE: denial of service via leak in keyboard
    - debian/patches/CVE-2017-8379-1.patch: limit kbd queue depth in
      ui/input.c.
    - debian/patches/CVE-2017-8379-2.patch: don't queue delay if paused in
      ui/input.c.
    - CVE-2017-8379

Author: Marc Deslauriers
Author Date: 2017-05-10 13:32:19 UTC

Import patches-unapplied version 1:2.6.1+dfsg-0ubuntu5.5 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: b309c5b16858283ada4cc8e10b4f7a18a79acb17

New changelog entries:
  * SECURITY UPDATE: denial of service via leak in virtFS
    - debian/patches/CVE-2017-7377.patch: fix file descriptor leak in
      hw/9pfs/9p.c.
    - CVE-2017-7377
  * SECURITY UPDATE: denial of service in cirrus_vga
    - debian/patches/CVE-2017-7718.patch: check parameters in
      hw/display/cirrus_vga_rop.h.
    - CVE-2017-7718
  * SECURITY UPDATE: code execution via cirrus_vga OOB r/w
    - debian/patches/CVE-2017-7980-1.patch: handle negative pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-2.patch: allow zero source pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-3.patch: fix blit address mask handling
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-4.patch: fix patterncopy checks in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-5.patch: revert allow zero source pitch
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-6.patch: stop passing around dst
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-7.patch: stop passing around src
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-8.patch: fix off-by-one in
      hw/display/cirrus_vga_rop.h.
    - debian/patches/CVE-2017-7980-9.patch: fix cirrus_invalidate_region in
      hw/display/cirrus_vga.c.
    - CVE-2017-7980
  * SECURITY UPDATE: denial of service via memory leak in virtFS
    - debian/patches/CVE-2017-8086.patch: fix leak in hw/9pfs/9p-xattr.c.
    - CVE-2017-8086
  * SECURITY UPDATE: denial of service via leak in audio
    - debian/patches/CVE-2017-8309.patch: release capture buffers in
      audio/audio.c.
    - CVE-2017-8309
  * SECURITY UPDATE: denial of service via leak in keyboard
    - debian/patches/CVE-2017-8379-1.patch: limit kbd queue depth in
      ui/input.c.
    - debian/patches/CVE-2017-8379-2.patch: don't queue delay if paused in
      ui/input.c.
    - CVE-2017-8379

Author: Marc Deslauriers
Author Date: 2017-05-10 13:32:19 UTC

Import patches-unapplied version 1:2.6.1+dfsg-0ubuntu5.5 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: b309c5b16858283ada4cc8e10b4f7a18a79acb17

New changelog entries:
  * SECURITY UPDATE: denial of service via leak in virtFS
    - debian/patches/CVE-2017-7377.patch: fix file descriptor leak in
      hw/9pfs/9p.c.
    - CVE-2017-7377
  * SECURITY UPDATE: denial of service in cirrus_vga
    - debian/patches/CVE-2017-7718.patch: check parameters in
      hw/display/cirrus_vga_rop.h.
    - CVE-2017-7718
  * SECURITY UPDATE: code execution via cirrus_vga OOB r/w
    - debian/patches/CVE-2017-7980-1.patch: handle negative pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-2.patch: allow zero source pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-3.patch: fix blit address mask handling
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-4.patch: fix patterncopy checks in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-5.patch: revert allow zero source pitch
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-6.patch: stop passing around dst
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-7.patch: stop passing around src
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-8.patch: fix off-by-one in
      hw/display/cirrus_vga_rop.h.
    - debian/patches/CVE-2017-7980-9.patch: fix cirrus_invalidate_region in
      hw/display/cirrus_vga.c.
    - CVE-2017-7980
  * SECURITY UPDATE: denial of service via memory leak in virtFS
    - debian/patches/CVE-2017-8086.patch: fix leak in hw/9pfs/9p-xattr.c.
    - CVE-2017-8086
  * SECURITY UPDATE: denial of service via leak in audio
    - debian/patches/CVE-2017-8309.patch: release capture buffers in
      audio/audio.c.
    - CVE-2017-8309
  * SECURITY UPDATE: denial of service via leak in keyboard
    - debian/patches/CVE-2017-8379-1.patch: limit kbd queue depth in
      ui/input.c.
    - debian/patches/CVE-2017-8379-2.patch: don't queue delay if paused in
      ui/input.c.
    - CVE-2017-8379

Author: Marc Deslauriers
Author Date: 2017-05-10 13:32:19 UTC

Import patches-unapplied version 1:2.6.1+dfsg-0ubuntu5.5 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: b309c5b16858283ada4cc8e10b4f7a18a79acb17

New changelog entries:
  * SECURITY UPDATE: denial of service via leak in virtFS
    - debian/patches/CVE-2017-7377.patch: fix file descriptor leak in
      hw/9pfs/9p.c.
    - CVE-2017-7377
  * SECURITY UPDATE: denial of service in cirrus_vga
    - debian/patches/CVE-2017-7718.patch: check parameters in
      hw/display/cirrus_vga_rop.h.
    - CVE-2017-7718
  * SECURITY UPDATE: code execution via cirrus_vga OOB r/w
    - debian/patches/CVE-2017-7980-1.patch: handle negative pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-2.patch: allow zero source pitch in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-3.patch: fix blit address mask handling
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-4.patch: fix patterncopy checks in
      hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-5.patch: revert allow zero source pitch
      in hw/display/cirrus_vga.c.
    - debian/patches/CVE-2017-7980-6.patch: stop passing around dst
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-7.patch: stop passing around src
      pointers in hw/display/cirrus_vga.c, hw/display/cirrus_vga_rop.h,
      hw/display/cirrus_vga_rop2.h.
    - debian/patches/CVE-2017-7980-8.patch: fix off-by-one in
      hw/display/cirrus_vga_rop.h.
    - debian/patches/CVE-2017-7980-9.patch: fix cirrus_invalidate_region in
      hw/display/cirrus_vga.c.
    - CVE-2017-7980
  * SECURITY UPDATE: denial of service via memory leak in virtFS
    - debian/patches/CVE-2017-8086.patch: fix leak in hw/9pfs/9p-xattr.c.
    - CVE-2017-8086
  * SECURITY UPDATE: denial of service via leak in audio
    - debian/patches/CVE-2017-8309.patch: release capture buffers in
      audio/audio.c.
    - CVE-2017-8309
  * SECURITY UPDATE: denial of service via leak in keyboard
    - debian/patches/CVE-2017-8379-1.patch: limit kbd queue depth in
      ui/input.c.
    - debian/patches/CVE-2017-8379-2.patch: don't queue delay if paused in
      ui/input.c.
    - CVE-2017-8379

Author: Christian Ehrhardt 
Author Date: 2017-03-07 08:23:08 UTC

Import patches-applied version 1:2.8+dfsg-3ubuntu2 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 7d9d190cf204025a9ce82a7e760f92bbf7f99895
Unapplied parent: 192a20354d3773623910db748cecc06a5ba5d9c1

New changelog entries:
  * d/p/ubuntu/spapr-pci-populate-PCI-DT-in-reverse-order.patch: backport
    "spapr/pci: populate PCI DT in reverse order" (LP: #1670481).

Author: Christian Ehrhardt 
Author Date: 2017-03-07 08:23:08 UTC

Import patches-unapplied version 1:2.8+dfsg-3ubuntu2 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 38694fd8b90f2f3643de571cbe8a2ade6bc01945

New changelog entries:
  * d/p/ubuntu/spapr-pci-populate-PCI-DT-in-reverse-order.patch: backport
    "spapr/pci: populate PCI DT in reverse order" (LP: #1670481).

Author: Christian Ehrhardt 
Author Date: 2017-01-30 07:07:06 UTC

Import patches-applied version 1:2.6.1+dfsg-0ubuntu5.3 to applied/ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 3ac79fe36e8701000c3de0000221d95d326b674e
Unapplied parent: 229070b783b250118529692f25af21a1cd5174ea

New changelog entries:
  * fix ambiguous machine trusty and utopic machine types (LP: #1641532)
    - d/p/ubuntu/define-ubuntu-machine-types.patch update type definitions
    - d/qemu-system-x86.NEWS to describe the issue

Author: Christian Ehrhardt 
Author Date: 2017-01-30 07:07:06 UTC

Import patches-unapplied version 1:2.6.1+dfsg-0ubuntu5.3 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: f4b5b6c84bd590694bf2700081fd68353f1312e1

New changelog entries:
  * fix ambiguous machine trusty and utopic machine types (LP: #1641532)
    - d/p/ubuntu/define-ubuntu-machine-types.patch update type definitions
    - d/qemu-system-x86.NEWS to describe the issue

Author: Christian Ehrhardt 
Author Date: 2017-01-31 10:26:19 UTC

Import patches-applied version 2.0.0+dfsg-2ubuntu1.32 to applied/ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 63294d7561741c5dbfab4a4959ed8edc45527b2f
Unapplied parent: 8a95cdc982730c08229c72df0f0fd0ba62e74917

New changelog entries:
  [ Dave Chiluk ]
  * Qemu VM crash with error
    "bdrv_error_action: Assertion `error >= 0' failed"
    (LP: #1655225)

Author: Christian Ehrhardt 
Author Date: 2017-01-31 10:26:19 UTC

Import patches-unapplied version 2.0.0+dfsg-2ubuntu1.32 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 10f3ca25f00268b91325748c615cef098535c6cd

New changelog entries:
  [ Dave Chiluk ]
  * Qemu VM crash with error
    "bdrv_error_action: Assertion `error >= 0' failed"
    (LP: #1655225)

Author: Stefan Bader
Author Date: 2016-09-30 12:24:37 UTC

Import patches-applied version 1:2.6.1+dfsg-0ubuntu5 to applied/ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 5f551eddd0bf18f9d2f22e04dc81345b3a84258f
Unapplied parent: a183513cb12c9e3c399cead592c6a1d98258e239

New changelog entries:
  * No-change rebuild to compile against new libxen version.