qemu-kvm-1.5.3-126.el7.6
エラータID: AXSA:2017-1615:03
Release date:
Tuesday, April 18, 2017 - 21:29
Subject:
qemu-kvm-1.5.3-126.el7.6
Affected Channels:
Asianux Server 7 for x86_64
Severity:
High
Description:
qemu-kvm is an open source virtualizer that provides hardware emulation for
the KVM hypervisor. qemu-kvm acts as a virtual machine monitor together with
the KVM kernel modules, and emulates the hardware for a full system such as
a PC and its assocated peripherals.
As qemu-kvm requires no host kernel patches to run, it is safe and easy to use.
Security issues fixed with this release:
CVE-2016-9603
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
Solution:
Update package.
CVEs:
CVE-2016-9603
A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue could occur when a VNC client attempted to update its display after a VGA operation is performed by a guest. A privileged user/process inside a guest could use this flaw to crash the QEMU process or, potentially, execute arbitrary code on the host with privileges of the QEMU process.
A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue could occur when a VNC client attempted to update its display after a VGA operation is performed by a guest. A privileged user/process inside a guest could use this flaw to crash the QEMU process or, potentially, execute arbitrary code on the host with privileges of the QEMU process.
Additional Info:
N/A
Download:
SRPMS
- qemu-kvm-1.5.3-126.el7.6.src.rpm
MD5: f48e4934e4af46d5f65c87db8d187911
SHA-256: dd1276ddc91701c62c3e05623b0016d39fa280e4f131940db3b5597fe2a09e3c
Size: 14.51 MB
Asianux Server 7 for x86_64
- qemu-img-1.5.3-126.el7.6.x86_64.rpm
MD5: 79f71890f2cf24e8b97486e7de39a8a0
SHA-256: b8dce83e35feee65b316b88aa08f145476810c02beec8485fcb6c2a88d605ba6
Size: 671.10 kB - qemu-kvm-1.5.3-126.el7.6.x86_64.rpm
MD5: 7e6080457557fa4644e7029c82c6b4f5
SHA-256: 389cdba1d0646a30aaaf233e0dc35ed0dc5a013fb6c6d7c42058979244368479
Size: 1.88 MB - qemu-kvm-common-1.5.3-126.el7.6.x86_64.rpm
MD5: da15176844e72f71ea67b6144129c265
SHA-256: 301b5ecc55e1232f85290c22844d86acbb97a28157731f06200d2c88a3a576c5
Size: 405.13 kB - qemu-kvm-tools-1.5.3-126.el7.6.x86_64.rpm
MD5: c7cb153058747c380465732400cfed7b
SHA-256: 9b8052646938cb889a66b00b8969d19400d1e70b9144cce513de8d6727c42005
Size: 203.25 kB