Errata overview
Errata ID 259
Date 2015-07-28
Source package qemu-kvm
Fixed in version 1.1.2+dfsg-6.47.201506231351
These vulnerabilities have been fixed in qemu-kvm:
* Denial of service due to insecure temporary file use in /net/slirp.c
* A privileged guest user in a guest with an AMD PCNet ethernet card enabled
  can potentially use this flaw to execute arbitrary code on the host with
  the privileges of the hosting QEMU process (CVE-2015-3209)
Additional notes
CVE ID CVE-2015-4037
UCS Bug number #38744