CVE-2017-16845: ps2: information leakage via post_load (bz #1514150)
CVE-2018-11806: slirp: heap buffer overflow while reassembling fragmented datagrams (bz #1586249)
CVE-2018-12617: qemu-guest-agent: Integer overflow causes segmentation fault in qmp_guest_file_read (bz #1594055)
Fix qemu-arm-static slowness (bz #1589506)