Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1

To: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Cc: 742386@bugs.debian.org, Gabriele Giacone <1o5g4r8o@gmail.com>
Subject: Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
From: Michael Tokarev <mjt@tls.msk.ru>
Date: Fri, 18 Apr 2014 15:54:44 +0400
Message-id: <[🔎] 53511284.7070604@msgid.tls.msk.ru>
Reply-to: Michael Tokarev <mjt@tls.msk.ru>, 742386@bugs.debian.org
In-reply-to: <[🔎] 3a4fe9c8a642b15e50b3b355f8da580e@mail.adsl.funky-badger.org>
References: <20140323013159.GA21045@phenomenon> <532EADF2.20908@msgid.tls.msk.ru> <20140323114518.GA7688@phenomenon> <[🔎] 1397410763.24647.36.camel@jacala.jungle.funky-badger.org> <[🔎] 534ACE24.60103@msgid.tls.msk.ru> <[🔎] 1397412279.24647.49.camel@jacala.jungle.funky-badger.org> <[🔎] 534AD200.9000505@msgid.tls.msk.ru> <[🔎] 3a4fe9c8a642b15e50b3b355f8da580e@mail.adsl.funky-badger.org>

18.04.2014 15:40, Adam D. Barratt wrote:
> On 2014-04-13 19:05, Michael Tokarev wrote:
[]
>>>> There's a pending security update for qemu fixing CVE-2014-0150 (#744221),
>>>> which uploads +deb7u1 for both qemu and qemu-kvm, fwiw.
>>>
>>> Okay, thanks.
>>>
>>> I guess the stable updates should be +deb7u2 then, incorporating the u1
>>> upload, once it's released.
>>
>> Yes indeed.  And I want to take care of this, again, once security fix will
>> be released.
> 
> I noticed that the security updates have now been released.
> 
> Not wishing to chase, just a gentle reminder that the window for getting updates in to 7.5 closes over the weekend. (Although getting in to 7.6 instead is presumably not a huge problem.)

I've another security bugfix for qemu+qemu-kvm, CVE-2014-2894,
assigned today, see
https://lists.nongnu.org/archive/html/qemu-devel/2014-04/msg02016.html
The fix is also one-liner.

Maybe we can combine the two - this #742386 and CVE-2014-2894 - into single pu?

If not, I guess I'll go with this #742386 first and CVE-2014-2894 on top of it.

Thanks,

/mjt

Reply to:

Follow-Ups:
- Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

References:
- Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
  - From: Michael Tokarev <mjt@tls.msk.ru>
- Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
  - From: Michael Tokarev <mjt@tls.msk.ru>
- Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Prev by Date: Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
Next by Date: Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
Previous by thread: Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
Next by thread: Bug#742386: wheezy-pu: package qemu/1.1.2+dfsg-6a+deb7u1
Index(es):
- Date
- Thread