-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 3.0 (quilt) Source: qemu Binary: qemu, qemu-keymaps, qemu-system, qemu-user, qemu-user-static, qemu-utils Architecture: amd64 arm armel armhf hppa i386 ia64 kfreebsd-amd64 kfreebsd-i386 mips mipsel powerpc ppc64 s390x sparc sparc64 all Version: 1.1.2+dfsg-6a+deb7u9 Maintainer: Debian QEMU Team <[email protected]> Uploaders: Aurelien Jarno <[email protected]>, Riku Voipio <[email protected]>, Vagrant Cascadian <[email protected]> Dm-Upload-Allowed: yes Homepage: http://www.qemu.org/ Standards-Version: 3.9.3 Vcs-Browser: http://git.debian.org/?p=pkg-qemu/qemu.git Vcs-Git: git://git.debian.org/git/pkg-qemu/qemu.git Build-Depends: debhelper (>= 5), nasm, device-tree-compiler, libfdt-dev, libx11-dev, libsdl1.2-dev (>> 1.2.1), libncurses5-dev, zlib1g-dev, texi2html, sharutils, libbrlapi-dev, libpulse-dev, libcurl4-gnutls-dev, libgnutls-dev, libsasl2-dev, uuid-dev, libvdeplug2-dev [linux-any], libasound2-dev [linux-any], libbluetooth-dev [linux-any], libattr1-dev, libcap-dev [linux-any], libgpmg1-dev [linux-any], linux-libc-dev (>= 2.6.34) [linux-any], libaio-dev [linux-any], xfslibs-dev [linux-any], texinfo, python, libspice-server-dev [amd64], libspice-protocol-dev [amd64], libxen-dev [amd64 i386], libiscsi-dev, libusbredirparser-dev [linux-any] Build-Conflicts: oss4-dev Package-List: qemu deb misc optional qemu-keymaps deb misc optional qemu-system deb misc optional qemu-user deb misc optional qemu-user-static deb misc optional qemu-utils deb misc optional Checksums-Sha1: 65930c43945aad83862eaf578b93b7c3d041dc3c 4480342 qemu_1.1.2+dfsg.orig.tar.bz2 d897054ebed03d794313c5ecd7ad243880a28e48 115019 qemu_1.1.2+dfsg-6a+deb7u9.debian.tar.gz Checksums-Sha256: 8286cbf15452ba2166e1fde1cfce1a1ded46ad20d8463a720d13a834b5f69915 4480342 qemu_1.1.2+dfsg.orig.tar.bz2 55d0c23f910d2d48599cb7868c7321529ee94d48fdb759c1f1ad759af02e17b0 115019 qemu_1.1.2+dfsg-6a+deb7u9.debian.tar.gz Files: e385f154b12c27422860cdcbd37509b4 4480342 qemu_1.1.2+dfsg.orig.tar.bz2 61bcfac2218cf998af4e6f00a19186e8 115019 qemu_1.1.2+dfsg-6a+deb7u9.debian.tar.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJV4gtbAAoJEAVMuPMTQ89EgQUP/AzE5HHy5si0vmGjDLui/bQu SvpVrd2KQGvGI+BmYZH5ySgQkqU/eS+V6KPJyByoycHFgDNUyy0qevxgqPijVaeQ pTnoc/aCBE4jmnrkI5eO6jqYJKvZdEeGv2uJXC8CDY8ZUJAFexIjCe1Pvn4+B49z z4Ms1s35qh1wPvJcc6lqb8lcDn4mFxoDDX72kuNd2b0YVsvHLGUzx9uLBa+zbVPb Mr4RoqBXEhP7N1C/iKCJmlO6nkQryLFcoId1LXaMHgd7H9tLyIywNcfxGIYhhi+5 nFMPteyYZ8M0jwN/+QVLttYgTgAADTdZU6fZo06gh8Uml0m7+Wober7kjHqR86cy xO0u9OS0ZvuEAjsXPFt7X+DkaZt+sO3groc1hzUxwOgG9ZnqKRoSSpeM35i2BmxV XhzEimEXc3Z3DLOLKe2TPAB09GxUS2gMxzwQn6qtDhgqLrJXH5fbKhZuYdDviOZh lZknlR2p38WB/kGlF7FQ+1rdZuj/JyG1on+PkR04jh9ib0YoFPcisvbYDA5C2uno sg7FI3jT1ae0VdvbYOxIKmHjPUU3ZfJgjALwJIA8+r0t1O4rWgf7MMUnO10MbzHz UjIKWzifMxiqg7/J+gA3cZhhs7Cplt0nHvq6wK3wLdqEJP2G32wSOsHxJq5GIQli EfLMizYOrHnw/wGL+eAu =asf4 -----END PGP SIGNATURE----- Changes: qemu (1.1.2+dfsg-6a+deb7u9) wheezy-security; urgency=high * Non-maintainer upload by the Security Team. * Add patches for CVE-2015-5165. CVE-2015-5165: rtl8139 uninitialized heap memory information leakage to guest. (Closes: #794610) * Add 0001-virtio-serial-fix-ANY_LAYOUT.patch patch. CVE-2015-5745: buffer overflow in virtio-serial. (Closes: #795087) -- Salvatore Bonaccorso <[email protected]> Sat, 29 Aug 2015 19:36:38 +0200
