ELSA-2018-4312

ELSA-2018-4312 - qemu security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2018-12-21

Description


[15:3.0.0-3.el7]
- monitor: guard iothread access by mon->use_io_thread (Wolfgang Bumiller) [Orabug: 29046045]
- monitor: delay monitor iothread creation (Wolfgang Bumiller) [Orabug: 29010480]
- Revert 'qmp: isolate responses into io thread' (Marc-Andre Lureau) [Orabug: 29010480]
- usb-mtp: outlaw slashes in filenames (Gerd Hoffmann) [Orabug: 29037012] {CVE-2018-16867}

[15:3.0.0-2.el7]
- vfio-pci: emit FAILOVER_PRIMARY_CHANGED event on guest behalf when unrealized (Si-Wei Liu) [Orabug: 29011784]
- vfio-pci: add FAILOVER_PRIMARY_CHANGED event to shorten downtime during failover (Si-Wei Liu) [Orabug: 29011776]
- virtio_net: Add support for 'Data Path Switching' during Live Migration. (Venu Busireddy) [Orabug: 28732921]
- parfait: Run static analysis when --with parfait specified (Liam Merwick) [Orabug: 28625099]
- parfait: add buildrpm/parfait-qemu.conf (Liam Merwick) [Orabug: 28625099]
- configure: Provide option to explicitly disable AVX2 (Liam Merwick) [Orabug: 28625099]
- lsi53c895a: convert to trace-events (Mark Cave-Ayland) [Orabug: 29011792]
- lsi: Reselection needed to remove pending commands from queue (George Kennedy) [Orabug: 28626593]
- lsi53c895a: check message length value is valid (Prasad J Pandit) [Orabug: 28873239] {CVE-2018-18849}
- 9p: fix QEMU crash when renaming files (Greg Kurz) [Orabug: 28971710] {CVE-2018-19489}
- 9p: take write lock on fid path updates (CVE-2018-19364) (Greg Kurz) [Orabug: 28957033] {CVE-2018-19364}
- nvme: fix out-of-bounds access to the CMB (Paolo Bonzini) [Orabug: 28885521] {CVE-2018-16847}
- kvm: x86: Fix kvm_arch_fixup_msi_route for remap-less case (Jan Kiszka) [Orabug: 28891193]
- i386: Add new model of Cascadelake-Server (Tao Xu) [Orabug: 28886460]
- i386: Add PKU on Skylake-Server CPU model (Tao Xu) [Orabug: 28886461]


Related CVEs


CVE-2018-16867

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (aarch64) qemu-3.0.0-3.el7.src.rpmc9efbbfac3d8387ec62732ddf1db39d922e23dfdce608ad72f8fff6d8e2f2a4fELBA-2023-24511ol7_aarch64_latest
qemu-3.0.0-3.el7.aarch64.rpm0e3a2cb615a3548f614dd82dca1ba37dea59087dca26f58fa5c4b05e9d822649ELBA-2023-24511ol7_aarch64_latest
qemu-block-gluster-3.0.0-3.el7.aarch64.rpm82b6cb33d2879203f08c8ad5e1d3edc7e946b164f4df812321c5006319011a60ELBA-2024-12732ol7_aarch64_latest
qemu-block-iscsi-3.0.0-3.el7.aarch64.rpmc061dd6f4431904559b69c032b30ec514605e20289dd09fc6d2debd3432a921dELBA-2024-12732ol7_aarch64_latest
qemu-block-rbd-3.0.0-3.el7.aarch64.rpm152a0cac17fee3d7a2988e7aed0cca45be8e41c2af5800fdef12e0866a7fb155ELBA-2024-12732ol7_aarch64_latest
qemu-common-3.0.0-3.el7.aarch64.rpm9d93855d69cff18ad215f79d10f90a08b51c006e19d26fd80bb1aa70afcf9600ELBA-2023-24511ol7_aarch64_latest
qemu-img-3.0.0-3.el7.aarch64.rpmc52ad27a810f0de0dac6b50c6399fda38c06f39051c9ca9c99719c4bcedf17b5ELBA-2024-12732ol7_aarch64_latest
qemu-kvm-3.0.0-3.el7.aarch64.rpmf12c7cea642abf7a358c593dc766b89e8220c0af36690823c90daaf9f46d490bELBA-2024-12732ol7_aarch64_latest
qemu-kvm-core-3.0.0-3.el7.aarch64.rpm1512c859442b0ebd0ead0aab8cb6d93e5899e26dbcb41e7d26bf814cefd673a5ELBA-2024-12732ol7_aarch64_latest
Oracle Linux 7 (x86_64) qemu-3.0.0-3.el7.src.rpmc9efbbfac3d8387ec62732ddf1db39d922e23dfdce608ad72f8fff6d8e2f2a4fELBA-2023-24511ol7_x86_64_kvm_utils
qemu-3.0.0-3.el7.x86_64.rpmf986ccd43db8b264c3cf83592e76524d010d04ba34fa5599d37d95e0cadf2c1bELBA-2023-24511ol7_x86_64_kvm_utils
qemu-block-gluster-3.0.0-3.el7.x86_64.rpmbb5e5219076437f9b4aee2a5942deda3e7f1f9b6f28b69b9953652407cad78faELBA-2024-12732ol7_x86_64_kvm_utils
qemu-block-iscsi-3.0.0-3.el7.x86_64.rpm2f24a4b8899111bdec8ba200f4aec1e2a321e1f12a86a71fcfab7c0a78bfa7a3ELBA-2024-12732ol7_x86_64_kvm_utils
qemu-block-rbd-3.0.0-3.el7.x86_64.rpm01b0119061cee8567b96763f4446751152f7873707e35afe60a5592cc69649d2ELBA-2024-12732ol7_x86_64_kvm_utils
qemu-common-3.0.0-3.el7.x86_64.rpm0eb0a49bc63e04fbab41f07540748045fb8b3356b8cf77d0f920921620208287ELBA-2023-24511ol7_x86_64_kvm_utils
qemu-img-3.0.0-3.el7.x86_64.rpm51f76c7d5c9e140e3193e8f58559ab84c3c9df2cb35dcb62c9eb164c2bddf8d4ELBA-2024-12732ol7_x86_64_kvm_utils
qemu-kvm-3.0.0-3.el7.x86_64.rpme2d048221dd4d3b2b708daaaa77d630309b10a3c067878190b8e2af38e3cec9fELBA-2024-12732ol7_x86_64_kvm_utils
qemu-kvm-core-3.0.0-3.el7.x86_64.rpm818067fa2f3807bb29b4eabbd95aadd8b33cf95084823e108bd97ffb0dee2b25ELBA-2024-12732ol7_x86_64_kvm_utils
qemu-system-x86-3.0.0-3.el7.x86_64.rpm8a4eeb9de09d3eaee60070360ad6b59f73e3fc627332be52aa2f1c9244f1e08cELBA-2023-24511ol7_x86_64_kvm_utils
qemu-system-x86-core-3.0.0-3.el7.x86_64.rpm8b5cb59289d673d75781acca0ed46fabb902bc8ca63d695db4101a77b53bf1c0ELBA-2024-12732ol7_x86_64_kvm_utils



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete