Summary: | <app-emulation/qemu-2.8.0-r3: display: cirrus_bitblt_cputovideo does not check if memory region is safe (CVE-2017-2620) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Thomas Deutschmann (RETIRED) <whissi> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | qemu+disabled |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B1 [glsa cve] | ||
Package list: |
=app-emulation/qemu-2.8.0-r3
|
Runtime testing required: | --- |
Bug Depends on: | |||
Bug Blocks: | 609202, 609334, 609396, 609398, 609638 |
Description
Thomas Deutschmann (RETIRED)
2017-02-13 02:32:43 UTC
I have pushed 2.8.0-r1 to the tree that contains the published upstream fix commit 62d4c6bd5263bb8413a06c80144fc678df6dfb64 Author: Li Qiang <liqiang6-s@360.cn> Date: Wed Feb 1 09:35:01 2017 +0100 cirrus: fix oob access issue (CVE-2017-2615) This specific patch is handled in bug #608034, stabilization on #608728 *ugh* I mixed up the CVEs. Please disregard my previous comment. Patchset is prepared. I will push the patch for this bug (and the other open CVE patches) at precisely 12:00pm. @ Maintainer(s): Please proceed! commit cc47fc6cf1fef191ebb6c19d4b8bba9a12294024 Author: Matthias Maier <tamiko@gentoo.org> Date: Mon Feb 20 21:27:40 2017 -0600 app-emulation/qemu: security fixes, notably CVE-2017-2620, bug #609206 This commit applies a number of patches fixing CVE-2017-2620 #609206 CVE-2017-2630 #609396 CVE-2017-5973 #609334 CVE-2017-5987 #609398 CVE-2017-6058 #609638 Package-Manager: Portage-2.3.3, Repoman-2.3.1 Arches, please stabilize =app-emulation/qemu-2.8.0-r3 Target-keywords: "amd64 x86" amd64 stable x86 stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one. commit 6db0a37a742a067e1df7b6e82147f09289c0ebd1 Author: Matthias Maier <tamiko@gentoo.org> Date: Wed Feb 22 13:16:26 2017 -0600 app-emulation/qemu: remove vulnerable 2.8.0-r1, bug #609206 Package-Manager: Portage-2.3.3, Repoman-2.3.1 Arches and Maintainer(s), Thank you for your work. New GLSA Request filed. This issue was resolved and addressed in GLSA 201704-01 at https://security.gentoo.org/glsa/201704-01 by GLSA coordinator Kristian Fiskerstrand (K_F). |