ELSA-2018-4312

ULN >
Oracle Linux Errata repository >
ELSA-2018-4312

ELSA-2018-4312 - qemu security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2018-12-21

Description

[15:3.0.0-3.el7]
- monitor: guard iothread access by mon->use_io_thread (Wolfgang Bumiller) [Orabug: 29046045]
- monitor: delay monitor iothread creation (Wolfgang Bumiller) [Orabug: 29010480]
- Revert 'qmp: isolate responses into io thread' (Marc-Andre Lureau) [Orabug: 29010480]
- usb-mtp: outlaw slashes in filenames (Gerd Hoffmann) [Orabug: 29037012] {CVE-2018-16867}

[15:3.0.0-2.el7]
- vfio-pci: emit FAILOVER_PRIMARY_CHANGED event on guest behalf when unrealized (Si-Wei Liu) [Orabug: 29011784]
- vfio-pci: add FAILOVER_PRIMARY_CHANGED event to shorten downtime during failover (Si-Wei Liu) [Orabug: 29011776]
- virtio_net: Add support for 'Data Path Switching' during Live Migration. (Venu Busireddy) [Orabug: 28732921]
- parfait: Run static analysis when --with parfait specified (Liam Merwick) [Orabug: 28625099]
- parfait: add buildrpm/parfait-qemu.conf (Liam Merwick) [Orabug: 28625099]
- configure: Provide option to explicitly disable AVX2 (Liam Merwick) [Orabug: 28625099]
- lsi53c895a: convert to trace-events (Mark Cave-Ayland) [Orabug: 29011792]
- lsi: Reselection needed to remove pending commands from queue (George Kennedy) [Orabug: 28626593]
- lsi53c895a: check message length value is valid (Prasad J Pandit) [Orabug: 28873239] {CVE-2018-18849}
- 9p: fix QEMU crash when renaming files (Greg Kurz) [Orabug: 28971710] {CVE-2018-19489}
- 9p: take write lock on fid path updates (CVE-2018-19364) (Greg Kurz) [Orabug: 28957033] {CVE-2018-19364}
- nvme: fix out-of-bounds access to the CMB (Paolo Bonzini) [Orabug: 28885521] {CVE-2018-16847}
- kvm: x86: Fix kvm_arch_fixup_msi_route for remap-less case (Jan Kiszka) [Orabug: 28891193]
- i386: Add new model of Cascadelake-Server (Tao Xu) [Orabug: 28886460]
- i386: Add PKU on Skylake-Server CPU model (Tao Xu) [Orabug: 28886461]

Related CVEs

CVE-2018-16867

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	qemu-3.0.0-3.el7.src.rpm	c9efbbfac3d8387ec62732ddf1db39d922e23dfdce608ad72f8fff6d8e2f2a4f	ELBA-2023-24511	ol7_aarch64_latest
	qemu-3.0.0-3.el7.aarch64.rpm	0e3a2cb615a3548f614dd82dca1ba37dea59087dca26f58fa5c4b05e9d822649	ELBA-2023-24511	ol7_aarch64_latest
	qemu-block-gluster-3.0.0-3.el7.aarch64.rpm	82b6cb33d2879203f08c8ad5e1d3edc7e946b164f4df812321c5006319011a60	ELBA-2024-12732	ol7_aarch64_latest
	qemu-block-iscsi-3.0.0-3.el7.aarch64.rpm	c061dd6f4431904559b69c032b30ec514605e20289dd09fc6d2debd3432a921d	ELBA-2024-12732	ol7_aarch64_latest
	qemu-block-rbd-3.0.0-3.el7.aarch64.rpm	152a0cac17fee3d7a2988e7aed0cca45be8e41c2af5800fdef12e0866a7fb155	ELBA-2024-12732	ol7_aarch64_latest
	qemu-common-3.0.0-3.el7.aarch64.rpm	9d93855d69cff18ad215f79d10f90a08b51c006e19d26fd80bb1aa70afcf9600	ELBA-2023-24511	ol7_aarch64_latest
	qemu-img-3.0.0-3.el7.aarch64.rpm	c52ad27a810f0de0dac6b50c6399fda38c06f39051c9ca9c99719c4bcedf17b5	ELBA-2024-12732	ol7_aarch64_latest
	qemu-kvm-3.0.0-3.el7.aarch64.rpm	f12c7cea642abf7a358c593dc766b89e8220c0af36690823c90daaf9f46d490b	ELBA-2024-12732	ol7_aarch64_latest
	qemu-kvm-core-3.0.0-3.el7.aarch64.rpm	1512c859442b0ebd0ead0aab8cb6d93e5899e26dbcb41e7d26bf814cefd673a5	ELBA-2024-12732	ol7_aarch64_latest

Oracle Linux 7 (x86_64)	qemu-3.0.0-3.el7.src.rpm	c9efbbfac3d8387ec62732ddf1db39d922e23dfdce608ad72f8fff6d8e2f2a4f	ELBA-2023-24511	ol7_x86_64_kvm_utils
	qemu-3.0.0-3.el7.x86_64.rpm	f986ccd43db8b264c3cf83592e76524d010d04ba34fa5599d37d95e0cadf2c1b	ELBA-2023-24511	ol7_x86_64_kvm_utils
	qemu-block-gluster-3.0.0-3.el7.x86_64.rpm	bb5e5219076437f9b4aee2a5942deda3e7f1f9b6f28b69b9953652407cad78fa	ELBA-2024-12732	ol7_x86_64_kvm_utils
	qemu-block-iscsi-3.0.0-3.el7.x86_64.rpm	2f24a4b8899111bdec8ba200f4aec1e2a321e1f12a86a71fcfab7c0a78bfa7a3	ELBA-2024-12732	ol7_x86_64_kvm_utils
	qemu-block-rbd-3.0.0-3.el7.x86_64.rpm	01b0119061cee8567b96763f4446751152f7873707e35afe60a5592cc69649d2	ELBA-2024-12732	ol7_x86_64_kvm_utils
	qemu-common-3.0.0-3.el7.x86_64.rpm	0eb0a49bc63e04fbab41f07540748045fb8b3356b8cf77d0f920921620208287	ELBA-2023-24511	ol7_x86_64_kvm_utils
	qemu-img-3.0.0-3.el7.x86_64.rpm	51f76c7d5c9e140e3193e8f58559ab84c3c9df2cb35dcb62c9eb164c2bddf8d4	ELBA-2024-12732	ol7_x86_64_kvm_utils
	qemu-kvm-3.0.0-3.el7.x86_64.rpm	e2d048221dd4d3b2b708daaaa77d630309b10a3c067878190b8e2af38e3cec9f	ELBA-2024-12732	ol7_x86_64_kvm_utils
	qemu-kvm-core-3.0.0-3.el7.x86_64.rpm	818067fa2f3807bb29b4eabbd95aadd8b33cf95084823e108bd97ffb0dee2b25	ELBA-2024-12732	ol7_x86_64_kvm_utils
	qemu-system-x86-3.0.0-3.el7.x86_64.rpm	8a4eeb9de09d3eaee60070360ad6b59f73e3fc627332be52aa2f1c9244f1e08c	ELBA-2023-24511	ol7_x86_64_kvm_utils
	qemu-system-x86-core-3.0.0-3.el7.x86_64.rpm	8b5cb59289d673d75781acca0ed46fabb902bc8ca63d695db4101a77b53bf1c0	ELBA-2024-12732	ol7_x86_64_kvm_utils

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691