[arch-security] QEMU venom vulnerability

Noel Kuntze noel at familie-kuntze.de
Thu May 14 01:22:59 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

No.

https://www.archlinux.org/packages/?sort=&q=qemu&maintainer=&flagged=
All packets are from before 2015-04-30.

Mit freundlichen Grüßen/Kind Regards,
Noel Kuntze

GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658

Am 14.05.2015 um 03:21 schrieb Mark Lee:
> On Thursday, May 14, 2015 12:17:23 AM Noel Kuntze wrote:
>> Hello,
>>
>> pacman -Qii qemu shows me that the package has been built
>>  Mo 13 Apr 2015 23:27:05 CEST.
>> As such, it is vulnerable.
>
> I was wondering if the package  in testing is also vulnerable. In other
> words...do we have a package that's not vulnerable to venom fro qemu?
>
> Regards,
> Mark


More information about the arch-security mailing list