Control: tags -1 + confirmed On Tue, 2025-12-16 at 10:40 +0300, Michael Tokarev wrote: > There's a new upstream stable/bugfix release of qemu, > v10.0.7, wich includes a large assortment of fixes. > Among these, there are fixes for two securty issues: > #1119917, CVE-2025-12464 (buffer overflow in e1000_receive_iov) > #1117153, CVE-2025-11234 (UAF in websocket handshake code) > > Additionally, there are fixes for xen packaging (missing > dependency, which has alredy been fixed for bookworm but > were forgotten in trixie), -- #1035676, #1120146.
Please go ahead. Regards, Adam
