Bug#768007: unblock: qemu/2.1+dfsg-7

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#768007: unblock: qemu/2.1+dfsg-7
From: Michael Tokarev <mjt@tls.msk.ru>
Date: Tue, 04 Nov 2014 08:35:46 +0400
Message-id: <[🔎] 20141104053546.1635.95466.reportbug@gandalf.local>
Reply-to: Michael Tokarev <mjt@tls.msk.ru>, 768007@bugs.debian.org

Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: unblock

Please consider unblocking package qemu.  Current version has 2 security
fixes (CVE-2014-3689 and CVE-2014-7815) and a fix for possible data
corrupter which has biten several people already (this one does not have
a bug# in debian, but ofc. I can file one too, original discussion was at
https://bugs.launchpad.net/qemu/+bug/1368815 ).

Besides that, it has several other bugfixes - #747636, #755740, #760949,
#765075 - these are easy changes not touching critical paths in the package.

All code changes are from upstream.

And besides that, there are a few tweaks in build system, which has been
tested extensively to ensure nothing breaks, which will help us to maintain
this package together with ubuntu guys without a need for forking - this
is something I really wanted to get into debian before freeze, because it
will be the common ground for quite some time.

Complete list of changes (from 2 releases combined):

   * urgency is high due to 2 security fixes
     and because of possible data corruption bugfix
   * vnc-sanitize-bits_per_pixel-from-the-client-CVE-2014-7815.patch
     from upstream (Closes: CVE-2014-7815)
   * add two patches from upstream for block/raw-posix.c to work around
     probs in FS_IOC_FIEMAP ioctl and to prefer seek_hole over fiemap.
     This should fix a long-standing ghost data corruption observed
     in various places.
   * mention closing of CVE-2014-3615 by 2.1.2 (2.1+dfsg-5)
   * 9p-use-little-endian-format-for-xattr-values.patch (Closes: #755740)
   * mention closing of #760386
   * mention closing of more CVEs by 2.1+dfsg-1
   * recognize ppc64el in qemu-debootstrap (Luca Falavigna) (Closes: #760949)
   * use dpkg-vendor to let derived distros to use our d/rules
   * use /usr/share/dpkg/architecture.mk to get DEB_HOST_* and DEB_BUILD_*
     variables.  This restores cross building support.
   * use /usr/share/dpkg/buildflags.mk for CFLAGS LDFLAGS &Co
   * pass -DVENDOR_{DEBIAN,UBUNTU} to compiler
   * do not treat ppc* and ppc*le as compatible for binfmt registrations
   * mention ACPI SLIC to RSDT id copying if slic table is supplied,
     thank you Tim Small for the patch (Closes: #765075)
   * apply 5 patches from upstream to fix a security issue in
     vmware-vga (Closes: #765496 CVE-2014-3689)
   * apply two patches from upstream to make qemu to work with samba4
     (Closes: #747636)

unblock qemu/2.1+dfsg-7

-- System Information:
Debian Release: 7.7
  APT prefers stable
  APT policy: (990, 'stable'), (500, 'oldstable'), (199, 'testing'), (50, 'unstable'), (40, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
powerpc

Kernel: Linux 3.10-amd64 (SMP w/8 CPU cores)
Locale: LANG=ru_RU.utf8, LC_CTYPE=ru_RU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Reply to:

Follow-Ups:
- Bug#768007: marked as done (unblock: qemu/2.1+dfsg-7)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Bug#767919: marked as done (unblock: viewmol/2.4.1-21)
Next by Date: Bug#767919: unblock: viewmol/2.4.1-21
Previous by thread: Bug#767466: unblock: sssd/1.11.7-2
Next by thread: Bug#768007: marked as done (unblock: qemu/2.1+dfsg-7)
Index(es):
- Date
- Thread