Accepting request 494734 from home:bfrogers:branches:Virtualization

Security fixes. OBS-URL: https://build.opensuse.org/request/show/494734 OBS-URL: https://build.opensuse.org/package/show/Virtualization/qemu?expand=0&rev=339
2017-05-11 21:48:59 +00:00
parent fb435f43f3
commit 8868022634
13 changed files with 276 additions and 4 deletions
--- a/qemu.changes
+++ b/qemu.changes
@@ -1,3 +1,18 @@
+-------------------------------------------------------------------
+Thu May 11 20:55:57 UTC 2017 - brogers@suse.com
+
+- Address various security/stability issues
+* Fix DOS potential in vnc interface (CVE-2017-8379 bsc#1037334)
+  0051-input-limit-kbd-queue-depth.patch
+* Fix DOS potential in vnc interface (CVE-2017-8309 bsc#1037242)
+  0052-audio-release-capture-buffers.patch
+* Fix OOB access in megasas device emulation (CVE-2017-8380
+  bsc#1037336)
+  0053-scsi-avoid-an-off-by-one-error-in-m.patch
+* Fix DOS in Vmware pv scsi emulation (CVE-2017-8112 bsc#1036211)
+  0054-vmw_pvscsi-check-message-ring-page-.patch
+- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.9
+
 -------------------------------------------------------------------
 Thu May  4 20:14:25 UTC 2017 - brogers@suse.com