Univention Bugzilla – Bug 38537
qemu-kvm: Privilege escalation (4.0)
Last modified: 2015-05-19 15:30:19 CEST
* Virtualized Environment Neglected Operations Manipulation (VENOM) vulnerability in QEMU's virtual Floppy Disk Controller (CVE-2015-3456)
Claimed to be fixed in 1.1.2+dfsg-6+deb7u7.
The package from errata4.0-0 has been cherrypicked into errata4.0-2 and rebuilt with the upstream patch. Advisory: 2015-05-13-qemu-kvm.yaml
Tests (amd64): OK Advisory: OK (reformatted)
<http://errata.univention.de/ucs/4.0/194.html>