[ubuntu/xenial-updates] qemu 1:2.5+dfsg-5ubuntu10.45 (Accepted)

qemu (1:2.5+dfsg-5ubuntu10.45) xenial-security; urgency=medium * SECURITY UPDATE: out-of-bounds read and write in sm501 - debian/patches/CVE-2020-12829-pre0.patch: fix hardware cursor. - debian/patches/CVE-2020-12829-pre1.patch: use values from the pitch register for 2D

[ubuntu/xenial-security] qemu 1:2.5+dfsg-5ubuntu10.45 (Accepted)

qemu (1:2.5+dfsg-5ubuntu10.45) xenial-security; urgency=medium * SECURITY UPDATE: out-of-bounds read and write in sm501 - debian/patches/CVE-2020-12829-pre0.patch: fix hardware cursor. - debian/patches/CVE-2020-12829-pre1.patch: use values from the pitch register for 2D

[ubuntu/xenial-updates] curl 7.47.0-1ubuntu2.16 (Accepted)

curl (7.47.0-1ubuntu2.16) xenial-security; urgency=medium * SECURITY UPDATE: wrong connect-only connection - debian/patches/CVE-2020-8231.patch: remember last connection by id, not by pointer in lib/connect.c, lib/easy.c, lib/multi.c, lib/url.c, lib/urldata.h. -

[ubuntu/xenial-security] curl 7.47.0-1ubuntu2.16 (Accepted)

curl (7.47.0-1ubuntu2.16) xenial-security; urgency=medium * SECURITY UPDATE: wrong connect-only connection - debian/patches/CVE-2020-8231.patch: remember last connection by id, not by pointer in lib/connect.c, lib/easy.c, lib/multi.c, lib/url.c, lib/urldata.h. -