lp:ubuntu/hardy-security/kvm
- Get this branch:
- bzr branch lp:ubuntu/hardy-security/kvm
Branch merges
Branch information
- Owner:
- Ubuntu branches
- Status:
- Mature
Recent revisions
- 38. By Marc Deslauriers
-
* REGRESSION: "boot" parameter was removed by security update (LP: #375937)
- debian/patches/ CVE-2008- 2004.patch: updated to reintroduce "boot"
parameter. - 37. By Dustin Kirkland
-
* debian/
patches/ SECURITY_ CVE-2008- 1945:
- SECURITY UPDATE: guest OS users may read arbitrary files on host OS
+ qemu/hw/usb-msd.c: Add image format option for USB mass-storage
$devices; Author: Aurelien Jarno <email address hidden>
+ CVE-2008-1945: commit 334c0241c006533d1f4ed7e07239ec 00b46c6efd
* debian/patches/ CVE-2008- 2382:
- SECURITY UPDATE: remote denial of service via crafted message to vnc
+ qemu/vnc.c: Properly handle the case of SetPixelEncodings with a
length of zero.; Author: Anthony Liguori <email address hidden>
+ CVE-2008-2382: commit 69dd5c9ffd5c0c6a01ad14b9c6a8d7 135ccc2b9a
* debian/patches/ CVE-2008- 4539:
- SECURITY UPDATE: local users might gain privileges via heap overflow
+ qemu/hw/cirrus_ vga.c: fix a heap overflow in Cirrus emulation;
Author: Aurelien Jarno <email address hidden>
+ CVE-2008-4539: commit 65d35a09979e63541afc5bfc595b9f 1b1b4ae069
* debian/patches/ CVE-2008- 5714:
- SECURITY UPDATE: vnc password limited to 7, rather than 8 characters
+ qemu/monitor.c: monitor_readline expects buf_size to include the
terminating \0, but do_change_vnc in monitor.c calls it as though
it doesn't; Authors: Chris Webb <email address hidden> and
Anthony Liguori <email address hidden>
+ CVE-2008-5714: commit 2a7e8dda090af586f3d0b3d157054a 9e18776a52
* debian/patches/ series: updated accordingly - 36. By Soren Hansen
-
Revert sighandler.patch and virtio_hang.patch. Fixes hang in installer and
likely other places, too. (LP: #217815) - 35. By Soren Hansen
-
* vmport_
save_regs. patch:
- Only save and restore eax, ebx, ecx, edx, esi, and edi registers in
vmport_ioport_ read.
(LP: #219165) - 32. By Soren Hansen
-
[ Jamie Strandboge ]
* debian/patches/ SECURITY_ CVE-2007- 1320+1321+ 1322+1366+ 2893.patch
based on 90_security.patch from qemu 0.9.1-1ubuntu1. Please note that
CVE-2007-2893 is also known as CVE-2007-1323, and CVE-2007-5729 and
CVE-2007-5730 are known as CVE-2007-1321 in Debian. This patch addresses
the following:
- Cirrus LGD-54XX "bitblt" heap overflow.
- NE2000 "mtu" heap overflow.
- QEMU "net socket" heap overflow.
- QEMU NE2000 "receive" integer signedness error.
- Infinite loop in the emulated SB16 device.
- Unprivileged "aam" instruction does not correctly handle the
undocumented divisor operand.
- Unprivileged "icebp" instruction will halt emulation.
* debian/patches/ SECURITY_ CVE-2008- 0928.patch: perform range checks on
block device read and write requests
* References
CVE-2007-1320
CVE-2007-1321
CVE-2007-1322
CVE-2007-1323
CVE-2007-1366
CVE-2007-2893
CVE-2007-5729
CVE-2007-5730
CVE-2008-0928[ Soren Hansen ]
* debian/patches/ extboot- geometry. patch:
- Apply extboot patch from Anthony Liguori that fixes CHS information
being calculated incorrectly, which seems to upset grub from time to time. - 31. By Soren Hansen
-
Re-disable unaccelerated execution (thus re-removing gcc-3.4 build-
dependency). - 29. By Soren Hansen
-
* Make installs succeed regardless of the init script's exit code. (LP:
#183663)
* Disable non-accelerated execution.
* Fixed up the clean target in debian/rules to properly clean up after
ourselves.
* Dropped build-dependency on gcc-3.4.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/kvm