ELSA-2018-4262
- ULN >
- Oracle Linux Errata repository >
- ELSA-2018-4262
ELSA-2018-4262 - qemu security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2018-10-29 |
Description
[12:2.9.0-17.el7]
- i386: Remove generic SMT thread check (Babu Moger) [Orabug: 28676425]
- pc: Fix typo on PC_COMPAT_2_12 (Eduardo Habkost) [Orabug: 28676425]
- i386: Enable TOPOEXT feature on AMD EPYC CPU (Babu Moger) [Orabug: 28676425]
- net: ignore packet size greater than INT_MAX (Jason Wang) [Orabug: 28762625] {CVE-2018-17963}
- pcnet: fix possible buffer overflow (Jason Wang) [Orabug: 28762617] {CVE-2018-17962}
- rtl8139: fix possible out of bound access (Jason Wang) [Orabug: 28762613] {CVE-2018-17958}
- ne2000: fix possible out of bound access in ne2000_receive (Jason Wang) [Orabug: 28733338] {CVE-2018-10839}
- seccomp: set the seccomp filter to all threads (Marc-Andre Lureau) [Orabug: 28576303] {CVE-2018-15746}
- virtio_net: Introduce VIRTIO_NET_F_STANDBY feature bit to virtio_net (Venu Busireddy) [Orabug: 28497003]
- virtio-net: use 64-bit values for feature flags (Jason Baron) [Orabug: 28497003]
- qga: check bytes count read by guest-file-read (Prasad J Pandit) [Orabug: 28312939] {CVE-2018-12617}
- CVE-2017-2630: Qemu: nbd: oob stack write in client routine drop_sync (Mark Kanda) [Orabug: 28424694] {CVE-2017-2630}
- CVE-2017-2633: Qemu: VNC: memory corruption due to unchecked resolution limit (Mark Kanda) [Orabug: 28424697] {CVE-2017-2633}
- CVE-2017-7471: Qemu: 9p: virtfs allows guest to change filesystem attributes (Mark Kanda) [Orabug: 28407849] {CVE-2017-7471}
- slirp: correct size computation while concatenating mbuf (Prasad J Pandit) [Orabug: 28263244] {CVE-2018-11806}
Related CVEs
| CVE-2017-2633 |
| CVE-2018-15746 |
| CVE-2018-17963 |
| CVE-2017-2630 |
| CVE-2017-7471 |
| CVE-2018-17958 |
| CVE-2018-10839 |
| CVE-2018-11806 |
| CVE-2018-12617 |
| CVE-2018-17962 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 7 (x86_64) | qemu-2.9.0-17.el7.src.rpm | b8081af6577ff73a35cca1346873263716002783df877e28c9db4513c4c0cff4 | ELBA-2023-24511 | ol7_x86_64_kvm_utils |
| qemu-2.9.0-17.el7.x86_64.rpm | 2643581a818cf6f23b01f6597c1b04abaa74f581ea6bbbf3c34a6b115dd0d86d | ELBA-2023-24511 | ol7_x86_64_kvm_utils | |
| qemu-block-gluster-2.9.0-17.el7.x86_64.rpm | b19e6c9fc270c42e3521459d9e86ddb6b25089d1c64d870e3fabb83172c9e083 | ELBA-2024-12732 | ol7_x86_64_kvm_utils | |
| qemu-block-iscsi-2.9.0-17.el7.x86_64.rpm | 95dd8412763ff7d4fabd5da0653c976b5559cab06a5e723d9261cf5df6023af7 | ELBA-2024-12732 | ol7_x86_64_kvm_utils | |
| qemu-block-rbd-2.9.0-17.el7.x86_64.rpm | a614ae309d48611c4191d178e2837fd76d23a2a59c507e6cc4db74b75666fa18 | ELBA-2024-12732 | ol7_x86_64_kvm_utils | |
| qemu-common-2.9.0-17.el7.x86_64.rpm | 2e5022ff9c2b57481388b9b96b298188c90405c3178d567d9f74a578507cf5df | ELBA-2023-24511 | ol7_x86_64_kvm_utils | |
| qemu-img-2.9.0-17.el7.x86_64.rpm | e6e400e0fceada33e425f1e2ecaa2a6dd0acaa501b0e41d1344f56053b8c22a1 | ELBA-2024-12732 | ol7_x86_64_kvm_utils | |
| qemu-kvm-2.9.0-17.el7.x86_64.rpm | 532ec5b8cbde74af95a9de438ac0acc38b6dc2a83ae26a2c57cf9f4e4b7779a5 | ELBA-2024-12732 | ol7_x86_64_kvm_utils | |
| qemu-kvm-core-2.9.0-17.el7.x86_64.rpm | 2ee58a69ea3f58c44491a2651e595f67d70de0f2d61188a8ca1ccf53b88ab1d5 | ELBA-2024-12732 | ol7_x86_64_kvm_utils | |
| qemu-system-x86-2.9.0-17.el7.x86_64.rpm | 8fa0642896ddda2f904e64ce97b6b23cd1d5415002550afbebeeb7b4cefbab31 | ELBA-2023-24511 | ol7_x86_64_kvm_utils | |
| qemu-system-x86-core-2.9.0-17.el7.x86_64.rpm | 6dcbca762b85774ed2fab5efd94d974fadc89e671848ca1eb87222f979e599c7 | ELBA-2024-12732 | ol7_x86_64_kvm_utils | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
