[Secure-testing-team] Bug#842463: Various 9ps security issues
Guido Günther
agx at sigxcpu.org
Sat Oct 29 12:46:47 UTC 2016
Package: qemu
Version: 1:2.6+dfsg-3.1
Severity: important
Tags: security
Hi,
several issues were found in qemu's 9pfs driver:
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02623.html
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02608.html
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02942.html
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg01790.html
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg01861.html
I will follow up with the CVE numbers once available.
Cheers,
-- Guido
-- System Information:
Debian Release: stretch/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'stable-updates'), (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.7.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages qemu depends on:
ii qemu-system 1:2.6+dfsg-3.1
ii qemu-user 1:2.6+dfsg-3.1
ii qemu-utils 1:2.6+dfsg-3.1
qemu recommends no packages.
Versions of packages qemu suggests:
ii qemu-user-static 1:2.6+dfsg-3.1
-- no debconf information
More information about the Secure-testing-team
mailing list