Your message dated Sat, 07 Mar 2026 09:47:08 +0000
with message-id <[email protected]>
and subject line Bug#1123670: fixed in qemu 1:10.0.8+ds-0+deb13u1
has caused the Debian Bug report #1123670,
regarding qemu: CVE-2025-14876: Unbounded allocation in virtio-crypto
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1123670: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1123670
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: qemu
Version: 1:10.1.3+ds-1
Severity: important
Tags: security upstream
Forwarded:
https://lore.kernel.org/qemu-devel/[email protected]/T/#u
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Control: found -1 1:7.1+dfsg-1
Hi,
The following vulnerability was published for qemu.
CVE-2025-14876[0]:
| Unbounded allocation in virtio-crypto
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2025-14876
https://www.cve.org/CVERecord?id=CVE-2025-14876
[1]
https://lore.kernel.org/qemu-devel/[email protected]/T/#u
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: qemu
Source-Version: 1:10.0.8+ds-0+deb13u1
Done: Michael Tokarev <[email protected]>
We believe that the bug you reported is fixed in the latest version of
qemu, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Michael Tokarev <[email protected]> (supplier of updated qemu package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 28 Feb 2026 22:03:46 +0300
Source: qemu
Architecture: source
Version: 1:10.0.8+ds-0+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: Debian QEMU Team <[email protected]>
Changed-By: Michael Tokarev <[email protected]>
Closes: 1123670 1125423
Changes:
qemu (1:10.0.8+ds-0+deb13u1) trixie; urgency=medium
.
* 10.0.8 upstream stable/bugfix release:
- Update version for 10.0.8 release
- scripts/qemugdb: timers: Fix KeyError in 'qemu timers' command
- linux-user/syscall.c: Prevent acquiring clone_lock while fork()
- virtio-gpu: fix error handling in virgl_cmd_resource_create_blob
- virtio-pmem: ignore empty queue notifications
- virtio-gpu-virgl: correct parent for blob memory region
- cryptodev-builtin: Limit the maximum size
- hw/virtio/virtio-crypto: verify asym request size
Closes: #1123670, CVE-2025-14876
- q35: Fix migration of SMRAM state
- virtio-dmabuf: Ensure UUID persistence for hash table insertion
- vdpa: fix vhost-vdpa suspended state not be shared
- hw/i2c/aspeed_i2c: Fix DMA moving data into incorrect address
- hw/i2c/aspeed: Fix wrong I2CC_DMA_LEN when I2CM_DMA_TX/RX_ADDR set first
- hw/i2c/aspeed_i2c.c: Add a check for dma_read
- hw/adc: Fix out-of-bounds write in Aspeed ADC model
- hw/uefi: fix size negotiation
- hw/nvme: Fix bootindex suffix use-after-free
- python: fix msys64 wheel directory specification
- tests/qtest/ufs-test: Add test for mcq completion queue wraparound
- hw/ufs: Fix mcq completion queue wraparound
- hw/ufs: fix CQE endianness and UPIU length
- hw/ufs: Ensure DBC of PRDT uses only lower 18 bits
- tests/functional: migrate sbsa_ref test images
- pc-bios/optionrom: Use 32-bit linker emulation for the optionroms
- target/i386/tcg: fix a few instructions that do not support VEX.L=1
- linux-user: fixup termios2 related things on PowerPC
- linux-user: Add missing termios baud rates
- linux-user: Add termios2 support to sparc target
- linux-user: Add termios2 support to sh4 target
- linux-user: Add termios2 support to mips target
- linux-user: Add termios2 support to hppa target
- linux-user: Add termios2 support to alpha target
- linux-user: Add termios2 support
- hw/intc: avoid byte swap fiddling in gicv3 its path
- bsd-user/syscall_defs.h: define STAT_TIME_T_EXT only for 32 bits
- bsd-user: Fix __i386__ test for TARGET_HAS_STAT_TIME_T_EXT
- hw/sd/sdhci: Fix TYPE_IMX_USDHC to implement sd-spec-version 3 by default
- linux-user/aarch64/target_fcntl.h: add missing
TARGET_O_LARGEFILE definition
https://gitlab.com/qemu-project/qemu/-/issues/3262
- tests/functional: Mark another MIPS replay test as flaky
- tests/functional: Mark the MIPS replay tests as flaky
- target/arm: Correctly trap HCR.TID1 registers in v7A
- target/arm: Correctly honour HCR.TID3 for v7A cores
- target/arm: Don't specify ID_PFR1 accessfn twice
- tests/functional: migrate aspeed_rainier image
- hw/loongarch/virt: Don't abort on access to unimplemented IOCSR
- target/loongarch: Fix exception ADEF/ADEM missing to update CSR_BADV
- target/loongarch: Fix exception BCE missing to update CSR_BADV
- target/loongach: Fix some exceptions failure in updating CSR_BADV
- hw/loongarch/virt: Fix irq allocation failure with pci device from fdt
- hw/loongarch/virt: Modify the interrupt trigger type in fdt table
- hw/i386/kvm: fix PIRQ bounds check in xen_physdev_map_pirq()
Closes: #1125423, CVE-2026-0665
- target/i386/tcg: allow VEX in 16-bit protected mode
- target/i386/tcg: mask addresses for VSIB
- target/i386/tcg: do not mark all SSE instructions as unaligned
- m68k: fix CAS2 writeback when Dc1==Dc2
- configs: use default prefix for Windows compilation
- tests: add tcg coverage for fixed mremap bugs
- linux-user: fix reserved_va page leak in do_munmap
- linux-user: fix mremap errors for invalid ranges
- linux-user: fix mremap unmapping adjacent region
- linux-user: allow null `pathname` for statx()/fstatat()
- tcg/riscv: Fix TCG_REG_TMP0 clobber in tcg_gen_dup{m,i}
- monitor/qmp: cleanup SocketChardev listener sources early
to avoid fd handling race
- hw/i2c/imx: Fix trace func name error
- target/i386/tcg: ignore V3 in 32-bit mode
- target/i386: Fix #GP error code for INT instructions
https://gitlab.com/qemu-project/qemu/-/issues/3160
- qdev: fix error handling in set_uint64_checkmask
- gdbstub: Fix const qualifier build errors with recent glibc
- monitor: Fix const qualifier build errors with recent glibc
- tests/vhost-user-bridge.c: Fix const qualifier build errors
with recent glibc
- i386: Fix const qualifier build errors with recent glibc
- Fix const qualifier build errors with recent glibc
- qga: Fix ubsan warning
- Revert "nvme: Fix coroutine waking"
- nvme: Note in which AioContext some functions run
- block: Fix BDS use after free during shutdown
- scripts/nsis.py: Tell makensis that WoA is 64 bit
- vhost: Always initialize cached vring data
- target/arm: handle unaligned PC during tlb probe
https://gitlab.com/qemu-project/qemu/-/issues/3233
- tcg: Zero extend 32-bit addresses for TCI
- tests/docker: fix debian-all-test-cross
- tests/docker: handle host-arch selection for all-test-cross
- tests/docker: add --arch-only to qemu deps for all-test-cross
- gitlab: move custom runners to Ubuntu 24.04
- gitlab-ci.d/cirrus: Update the FreeBSD job to v14.3
- tests/vm: bump FreeBSD image to 14.3
* virtio-gpu-virgl-Add-virtio-gpu-virgl-hostmem-region.patch
(fix regression in 10.0.8, introduced in
"virtio-gpu-virgl: correct parent for blob memory region")
Checksums-Sha1:
d87ad62901dd228e4bd8fded297e72920eca8729 12553 qemu_10.0.8+ds-0+deb13u1.dsc
06ba3710d4aa3735a588dbaa10ebc333b060caa5 39967744 qemu_10.0.8+ds.orig.tar.xz
db8f2b9f394b1fa3e7992556a5261bc6bae7f765 146764
qemu_10.0.8+ds-0+deb13u1.debian.tar.xz
dc7cd2fc18c40f543562bf3c4991e529ae99c933 8216
qemu_10.0.8+ds-0+deb13u1_source.buildinfo
Checksums-Sha256:
a27321bdcf5d9af974fa2f83888173c823b839ae110462680e17b5002f3dd458 12553
qemu_10.0.8+ds-0+deb13u1.dsc
70b2ec1ccbf3a4d75429f2d3ac77d5ed6eb8d517702998fd1c8e43f865f33cd7 39967744
qemu_10.0.8+ds.orig.tar.xz
d92944e00341400c02e67b96a2a80e378b6299935e22792368f5d8dfe26195ff 146764
qemu_10.0.8+ds-0+deb13u1.debian.tar.xz
4cbf06569173d17bead7c87a4fc7b3c4ab70be7f82c43b02410a220fa1b79af9 8216
qemu_10.0.8+ds-0+deb13u1_source.buildinfo
Files:
a14f1fb7c6e383232ad709ae9e30f5cb 12553 otherosfs optional
qemu_10.0.8+ds-0+deb13u1.dsc
244477aa256c8aa5fae27e21f61aa2a1 39967744 otherosfs optional
qemu_10.0.8+ds.orig.tar.xz
d0a12b2712b049451855c3028d330fc2 146764 otherosfs optional
qemu_10.0.8+ds-0+deb13u1.debian.tar.xz
1bc44a946fabda600a1d560a5e936d98 8216 otherosfs optional
qemu_10.0.8+ds-0+deb13u1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=Tpjn
-----END PGP SIGNATURE-----
pgp9rUitPOO3o.pgp
Description: PGP signature
--- End Message ---
