Your message dated Thu, 08 Oct 2015 17:33:56 +0000
with message-id <[email protected]>
and subject line Bug#799452: fixed in qemu 1:2.4+dfsg-4
has caused the Debian Bug report #799452,
regarding qemu: CVE-2015-7295: net: virtio-net possible remote DoS
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
799452: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=799452
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: qemu
Version: 1.1.2+dfsg-6a+deb7u9
Severity: important
Tags: security upstream patch
Hi,
the following vulnerability was published for qemu.
CVE-2015-7295[0]:
net: virtio-net possible remote DoS
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2015-7295
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1264381
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: qemu
Source-Version: 1:2.4+dfsg-4
We believe that the bug you reported is fixed in the latest version of
qemu, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Michael Tokarev <[email protected]> (supplier of updated qemu package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 08 Oct 2015 20:30:03 +0300
Source: qemu
Binary: qemu qemu-system qemu-block-extra qemu-system-common qemu-system-misc
qemu-system-arm qemu-system-mips qemu-system-ppc qemu-system-sparc
qemu-system-x86 qemu-user qemu-user-static qemu-user-binfmt qemu-utils
qemu-guest-agent qemu-kvm libcacard0 libcacard-dev libcacard-tools
Architecture: source
Version: 1:2.4+dfsg-4
Distribution: unstable
Urgency: medium
Maintainer: Debian QEMU Team <[email protected]>
Changed-By: Michael Tokarev <[email protected]>
Description:
libcacard-dev - Virtual Common Access Card (CAC) Emulator (development files)
libcacard-tools - Virtual Common Access Card (CAC) Emulator (tools)
libcacard0 - Virtual Common Access Card (CAC) Emulator (runtime library)
qemu - fast processor emulator
qemu-block-extra - extra block backend modules for qemu-system and qemu-utils
qemu-guest-agent - Guest-side qemu-system agent
qemu-kvm - QEMU Full virtualization on x86 hardware
qemu-system - QEMU full system emulation binaries
qemu-system-arm - QEMU full system emulation binaries (arm)
qemu-system-common - QEMU full system emulation binaries (common files)
qemu-system-mips - QEMU full system emulation binaries (mips)
qemu-system-misc - QEMU full system emulation binaries (miscelaneous)
qemu-system-ppc - QEMU full system emulation binaries (ppc)
qemu-system-sparc - QEMU full system emulation binaries (sparc)
qemu-system-x86 - QEMU full system emulation binaries (x86)
qemu-user - QEMU user mode emulation binaries
qemu-user-binfmt - QEMU user mode binfmt registration for qemu-user
qemu-user-static - QEMU user mode emulation binaries (static version)
qemu-utils - QEMU utilities
Closes: 797608 799452
Changes:
qemu (1:2.4+dfsg-4) unstable; urgency=medium
.
* applied 3 patches from upstream to fix virtio-net
possible remote DoS (Closes: #799452 CVE-2015-7295)
* remove now-unused /etc/qemu too (Closes: #797608)
Checksums-Sha1:
4dd777b82382faf65351d1a5b41a1272cdec9e9f 6038 qemu_2.4+dfsg-4.dsc
fb44cba86ee2a9f0685c55ce257b801f64528c97 66796 qemu_2.4+dfsg-4.debian.tar.xz
Checksums-Sha256:
8d6c765da99eada732b39750347a7bc26ab4bfd124a62d34dc1c59bfbd3efdc1 6038
qemu_2.4+dfsg-4.dsc
6d480bb8b2f38d09b870983a6768b088c64b5e53027374fa99ef6ee82082cd59 66796
qemu_2.4+dfsg-4.debian.tar.xz
Files:
b7e4e5833d5ecb6304ffb7a6199db4b2 6038 otherosfs optional qemu_2.4+dfsg-4.dsc
895234146cbf82464aab2986d8fe1762 66796 otherosfs optional
qemu_2.4+dfsg-4.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAEBAgAGBQJWFqhNAAoJEL7lnXSkw9fbFRgH/0lo4ubvkHtZiUIyFuxAoyWd
/rUCr7pz8SwYjMFGX8RTGQf58TtL0WdxPaniVu4DJ5JAK+ifNv4UYcePj4zdagHx
7IZtaaW6V1f7OD6kzE7w4Ogii65EjHswMTSvw5hJd+TnKS75d5s5qMiNQXQgIIfQ
gJRXQb0tUtA5V/fgZhqNVEKMrGLpWx079IHuB8GH9fMcOoIDAhqxruoAqsD9i3sa
Ian0oNOfhHf/VasQEyLPSH7Ef6nmipkz2dOVKxu6vZAJTuWYtBCSumac8I77RZsF
HkLRGgTevrB8hSjbuzs/q+x6rTT6dB6OBID7tEIcQg9Mq489j0SCweoVfYJthKo=
=Itj0
-----END PGP SIGNATURE-----
--- End Message ---
