[23.11] qemu: add patches for CVE-2024-3446, CVE-2024-3447, CVE-2024-3567 #307248
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description of changes
https://nvd.nist.gov/vuln/detail/CVE-2024-3446
https://nvd.nist.gov/vuln/detail/CVE-2024-3447
https://nvd.nist.gov/vuln/detail/CVE-2024-3567
These fixes were backported as a block to the 8.2.x series intermingled with a number of related issues, so I thought it better not to try and label them separately.
The 8.1.x branch not having been touched for 3 months, I think it's unlikely we'll see another 8.1.x release covering this.
Unstable will address these with the 9.0.x bump.
Things done
nix.conf
? (See Nix manual)sandbox = relaxed
sandbox = true
nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD"
. Note: all changes have to be committed, also see nixpkgs-review usage./result/bin/
)Add a 👍 reaction to pull requests you find important.