Your message dated Sun, 14 Jun 2015 16:02:58 +0000 with message-id <e1z4an8-00072x...@franck.debian.org> and subject line Bug#787547: fixed in qemu 1:2.1+dfsg-12+deb8u1 has caused the Debian Bug report #787547, regarding CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 787547: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=787547 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: qemu Severity: grave Tags: security Hi Michael, please see theses Xen issues which all affect src:qemu http://xenbits.xen.org/xsa/advisory-128.html http://xenbits.xen.org/xsa/advisory-129.html http://xenbits.xen.org/xsa/advisory-130.html http://xenbits.xen.org/xsa/advisory-131.html I suppose the Xen developers reported these to upstream, but they were only disclosed some hours ago. Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: qemu Source-Version: 1:2.1+dfsg-12+deb8u1 We believe that the bug you reported is fixed in the latest version of qemu, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 787...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Michael Tokarev <m...@tls.msk.ru> (supplier of updated qemu package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 11 Jun 2015 20:17:04 +0300 Source: qemu Binary: qemu qemu-system qemu-system-common qemu-system-misc qemu-system-arm qemu-system-mips qemu-system-ppc qemu-system-sparc qemu-system-x86 qemu-user qemu-user-static qemu-user-binfmt qemu-utils qemu-guest-agent qemu-kvm Architecture: source Version: 1:2.1+dfsg-12+deb8u1 Distribution: jessie-security Urgency: high Maintainer: Debian QEMU Team <pkg-qemu-de...@lists.alioth.debian.org> Changed-By: Michael Tokarev <m...@tls.msk.ru> Description: qemu - fast processor emulator qemu-guest-agent - Guest-side qemu-system agent qemu-kvm - QEMU Full virtualization on x86 hardware qemu-system - QEMU full system emulation binaries qemu-system-arm - QEMU full system emulation binaries (arm) qemu-system-common - QEMU full system emulation binaries (common files) qemu-system-mips - QEMU full system emulation binaries (mips) qemu-system-misc - QEMU full system emulation binaries (miscelaneous) qemu-system-ppc - QEMU full system emulation binaries (ppc) qemu-system-sparc - QEMU full system emulation binaries (sparc) qemu-system-x86 - QEMU full system emulation binaries (x86) qemu-user - QEMU user mode emulation binaries qemu-user-binfmt - QEMU user mode binfmt registration for qemu-user qemu-user-static - QEMU user mode emulation binaries (static version) qemu-utils - QEMU utilities Closes: 787547 788460 Changes: qemu (1:2.1+dfsg-12+deb8u1) jessie-security; urgency=high . * slirp-use-less-predictable-directory-name-in-tmp-CVE-2015-4037.patch (Closes: CVE-2015-4037) * 11 patches for XEN PCI pass-through issues (Closes: #787547 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106) * pcnet-force-buffer-access-to-be-in-bounds-CVE-2015-3209.patch with preparation bugfix pcnet-fix-negative-array-index-read.patch from upstream (Closes: #788460 CVE-2015-3209) Checksums-Sha1: 32e306497bc8b6f65c8713e383b5968dcf29d1d3 5174 qemu_2.1+dfsg-12+deb8u1.dsc 79252b7eb6054390584b67b2e9e6b5764ef48054 105752 qemu_2.1+dfsg-12+deb8u1.debian.tar.xz Checksums-Sha256: 72243a617919f14a0343a171ddd9e678ffdce5fc78c7f951b4264b72b625e6f9 5174 qemu_2.1+dfsg-12+deb8u1.dsc 4a6b8761167a8b2cdc553c90cab1e67474ce4be7996d3bb1c4eb188ff4208331 105752 qemu_2.1+dfsg-12+deb8u1.debian.tar.xz Files: 6ab66f0e18fea39c4857351eced6f672 5174 otherosfs optional qemu_2.1+dfsg-12+deb8u1.dsc 813744f5b619eb2b23c1b8692b589c12 105752 otherosfs optional qemu_2.1+dfsg-12+deb8u1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBCAAGBQJVefxUAAoJEL7lnXSkw9fbvmEH/0U6/Xi+n/WY+rvhIVMU9ik9 fpOVZYDWGWZXOtXfvEIFUkRO6rv5ZHDbbonsg/9mDwTcZo8Qz44akdPqd9jS0xGA olkuYL9/NO7lFlif+5If+Fa6ZRfz38VpEWkEgibGJm0KBtnqAwsaCj07DOSRhA2j R2M7R6Ssn/NaBl2BX5KqGFu3/TlePPVFBDfhKi06QyWRXvhGx2DASqXUeETceYmK 1vA/SAx5qOvQcnha5Ml/OobuHLEJNlESEw0T6pWBS94HKcjDdUk8RzohF9ed+Eby +A+860Te+H8iQ72eB+vs1RvdRA2tA3j2MDg091c0u76/fiAflHfBj/xtWf111/c= =woCP -----END PGP SIGNATURE-----
--- End Message ---
