From ${URL} : Quick Emulator(Qemu) built with the USB EHCI Emulation support is vulnerable to a memory leakage issue. It could occur while hot-unplugging the device, as it does not release the memory allocated at initialisation. A guest user/process could use this issue to leak host memory, resulting in DoS for host. Upstream patch: --------------- -> http://git.qemu.org/?p=qemu.git;a=commit;h=d710e1e7bd3d5bfc26b631f02ae87901ebe646b0 Reference: ---------- -> https://bugzilla.redhat.com/show_bug.cgi?id=1459132 @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
This commit is already in upstream version 2.9.0.
GLSA Vote: No