-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, Sep 23, 2014 at 08:26:03PM +0400, Michael Tokarev wrote: > Yes, that's a security fix indeed, but it is, again, of a rather low > impact. At max it will lead to qemu process crashing (so a DoS), but > the thing is that slirp (aka user-mode networking) in qemu should never > be used for anything serious because it is very slow and has many > limitations, it is a poor-man bandaind to get networking running > quick without setting up tap devices and bridges...
Ok. I did not know this. I'm creating issues in Debian BTS for security vulnerabilities so that maintainers know about them. These are also added to Debian security-tracker. In some packages maintainer is watching upstream advisories closely, but this is not always the case. > I'll fix this for the next upload anyway. Thank you. - --- Henri Salo -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlQippsACgkQXf6hBi6kbk/FIgCg0GtsawLjtuulS+umwUWTBsds EEYAoIBjeSqjv9SCezL4u0vXDGTEry6c =KPem -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org