Just released, including security updates: 9.1.1-20170725
Updates in 2 source package(s), 6 binary package(s):
Source qemu, binaries: qemu-utils:amd64 qemu-utils:arm64
qemu (1:2.8+dfsg-6+deb9u1) stretch-security; urgency=high
* net-e1000e-fix-an-infinite-loop-issue-CVE-2017-9310.patch
Closes: #863840, CVE-2017-9310
* usb-ohci-fix-error-return-code-in-servicing-iso-td-CVE-2017-9330.patch
Closes: #863943, CVE-2017-9330
* ide-ahci-call-cleanup-function-in-ahci-unit-CVE-2017-9373.patch
Closes: #864216, CVE-2017-9373
* xhci-guard-xhci_kick_epctx-against-recursive-calls-CVE-2017-9375.patch
Closes: #864219, CVE-2017-9375
* usb-ehci-fix-memory-leak-in-ehci-CVE-2017-9374.patch
Closes: #864568, CVE-2017-9374
* nbd-ignore-SIGPIPE-CVE-2017-10664.patch
Closes: #866674, CVE-2017-10664
*
nbd-fully-initialize-client-in-case-of-failed-negotiation-CVE-2017-9524.patch
nbd-fix-regression-on-resiliency-to-port-scan-CVE-2017-9524.patch
Closes: #865755, CVE-2017-9524
* xen-disk-don-t-leak-stack-data-via-response-ring-CVE-2017-10911.patch
Closes: CVE-2017-10911
Source bind9, binaries: libdns-export162:amd64 libisc-export160:amd64
libdns-export162:arm64 libisc-export160:arm64
bind9 (1:9.10.3.dfsg.P4-12.3+deb9u2) stretch-security; urgency=high
* Non-maintainer upload by the Security Team.
* debian/patches:
- CVE-2017-3142_regression added, fix a regression introduced in with the
correction for CVE-2017-3142.
--
Steve McIntyre, Cambridge, UK. st...@einval.com
"Managing a volunteer open source project is a lot like herding
kittens, except the kittens randomly appear and disappear because they
have day jobs." -- Matt Mackall
signature.asc
Description: PGP signature
