On 07/25/13 23:44, Michael Roth wrote: > The QEMU v1.5.2 stable release is now available at: > > http://wiki.qemu.org/download/qemu-1.5.2.tar.bz2 > > This is release is solely to address a security issue (CVE-2013-2231) found > in the QEMU Guest Agent on Windows. More details on the nature of the CVE > can be found here: > > http://seclists.org/oss-sec/2013/q3/161 > > There are 2 minor fixes for qemu-ga for Windows as well, though these are > included mainly due to being dependencies of the CVE fix sent upstream. > > Thanks to Laszlo and the Red Hat security team for identifying/fixing the > issue.
For identification and analysis Lev Veyde @ RH takes the credit. Thanks, Laszlo
