ubuntu/+source/qemu:applied/ubuntu/bionic-security

Last commit made on 2020-02-18
Get this branch:
git clone -b applied/ubuntu/bionic-security https://git.launchpad.net/ubuntu/+source/qemu
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/bionic-security
Repository:
lp:ubuntu/+source/qemu

Recent commits

ae44803... by Marc Deslauriers on 2020-02-12

Import patches-applied version 1:2.11+dfsg-1ubuntu7.23 to applied/ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: ebb3300e700f8bf1497e067b0a3611d126ea4617
Unapplied parent: 0b9019182156b3e286f8989614680a683a0182b0

New changelog entries:
  * SECURITY UPDATE: OOB heap access via unexpected iSCSI Server response
    - debian/patches/CVE-2020-1711.patch: cap block count from GET LBA
      STATUS in block/iscsi.c.
    - CVE-2020-1711
  * SECURITY UPDATE: heap-based overflow in slirp networking
    - debian/patches/CVE-2020-7039-1.patch: fix oob issue in
      slirp/tcp_subr.c.
    - debian/patches/CVE-2020-7039-2.patch: use correct size while
      emulating IRC commands in slirp/tcp_subr.c.
    - debian/patches/CVE-2020-7039-3.patch: use correct size while
      emulating commands in slirp/tcp_subr.c.
    - CVE-2020-7039
  * SECURITY UPDATE: buffer overflow via incorrect snprintf return codes
    - debian/patches/CVE-2020-8608-1.patch: add slirp_fmt() helpers to
      slirp/slirp.c, slirp/slirp.h.
    - debian/patches/CVE-2020-8608-2.patch: fix unsafe snprintf() usages in
      slirp/tcp_subr.c.
    - CVE-2020-8608

0b90191... by Marc Deslauriers on 2020-02-12

[PATCH] tcp_emu: fix unsafe snprintf() usages

Gbp-Pq: CVE-2020-8608-2.patch.

2620e49... by Marc Deslauriers on 2020-02-12

[PATCH] util: add slirp_fmt() helpers

Gbp-Pq: CVE-2020-8608-1.patch.

1d36462... by Marc Deslauriers on 2020-02-12

[PATCH] slirp: use correct size while emulating commands

Gbp-Pq: CVE-2020-7039-3.patch.

33d0ecb... by Marc Deslauriers on 2020-02-12

[PATCH] slirp: use correct size while emulating IRC commands

Gbp-Pq: CVE-2020-7039-2.patch.

ae0b8d5... by Marc Deslauriers on 2020-02-12

[PATCH] tcp_emu: Fix oob access

Gbp-Pq: CVE-2020-7039-1.patch.

4413dc6... by Marc Deslauriers on 2020-02-12

[PATCH] iscsi: Cap block count from GET LBA STATUS (CVE-2020-1711)

Gbp-Pq: CVE-2020-1711.patch.

d3ffc92... by Marc Deslauriers on 2020-02-12

[PATCH] virtio-blk: fix out-of-bounds access to bitmap in

Gbp-Pq: lp1859527-virtio-blk-fix-out-of-bounds-access-to-bitmap-in-not.patch.

73ad28b... by Marc Deslauriers on 2020-02-12

[PATCH] vfio: Use a trace point when a RAM section cannot be DMA

Gbp-Pq: lp-1847948-vfio-Use-a-trace-point-when-a-RAM-section-cannot-be-.patch.

1e63c19... by Marc Deslauriers on 2020-02-12

[PATCH] vfio/pci: Relax DMA map errors for MMIO regions

Gbp-Pq: lp-1847948-vfio-pci-Relax-DMA-map-errors-for-MMIO-regions.patch.