ELSA-2012-0050 - qemu-kvm security, bug fix, and enhancement update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2012-01-23 |
Description
[qemu-kvm-0.12.1.2-2.209.el6_2.4]
- kvm-e1000-prevent-buffer-overflow-when-processing-legacy.patch [bz#772081]
- Resolves: bz#772081
(EMBARGOED CVE-2012-0029 qemu-kvm: e1000: process_tx_desc legacy mode packets heap overflow [rhel-6.2.z])
[qemu-kvm-0.12.1.2-2.209.el6_2.3]
- kvm-Revert-virtio-blk-refuse-SG_IO-requests-with-scsi-of.patch [for bz#767721]
- kvm-virtio-blk-refuse-SG_IO-requests-with-scsi-off-v2.patch [bz#767721]
- CVE: CVE-2011-4127
- Resolves: bz#767721
(qemu-kvm: virtio-blk: refuse SG_IO requests with scsi=off (CVE-2011-4127 mitigation) [rhel-6.2.z])
[qemu-kvm-0.12.1.2-2.209.el6_2.2]
- kvm-virtio-blk-refuse-SG_IO-requests-with-scsi-off.patch [bz#752375]
- CVE: CVE-2011-4127
- Resolves: bz#767721
(EMBARGOED qemu-kvm: virtio-blk: refuse SG_IO requests with scsi=off (CVE-2011-4127 mitigation) [rhel-6.3])
- Resolves: bz#767906
(qemu-kvm should be built with full relro and PIE support)
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 6 (x86_64) | qemu-kvm-0.12.1.2-2.209.el6_2.4.src.rpm | 731b2522ddba33469b32d685a6d4cfb0 | ELSA-2020-4056 |
| qemu-img-0.12.1.2-2.209.el6_2.4.x86_64.rpm | 2aab9cb3a1739e585b63007769946d2c | ELSA-2020-4056 |
| qemu-kvm-0.12.1.2-2.209.el6_2.4.x86_64.rpm | b9ebb473d1d80d860e26fc83c6d16b9e | ELSA-2020-4056 |
| qemu-kvm-tools-0.12.1.2-2.209.el6_2.4.x86_64.rpm | 6c0fd67508656d9c724856aabf498e85 | ELSA-2020-4056 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
