ELSA-2019-4518

ELSA-2019-4518 - qemu security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2019-01-25

Description


[15:3.0.0-4.el7]
- usb-mtp: use O_NOFOLLOW and O_CLOEXEC. (Gerd Hoffmann) [Orabug: 29056673] {CVE-2018-16872}
- pvrdma: add uar_read routine (Prasad J Pandit) {CVE-2018-20191}
- pvrdma: release ring object in case of an error (Prasad J Pandit) [Orabug: 29171822] {CVE-2018-20126}
- pvrdma: check number of pages when creating rings (Prasad J Pandit) [Orabug: 29171821] {CVE-2018-20125}
- pvrdma: check return value from pvrdma_idx_ring_has_ routines (Prasad J Pandit) [Orabug: 29171820] {CVE-2018-20216}
- rdma: remove unused VENDOR_ERR_NO_SGE macro (Prasad J Pandit) [Orabug: 29121181] {CVE-2018-20124}
- rdma: check num_sge does not exceed MAX_SGE (Prasad J Pandit) [Orabug: 29121181] {CVE-2018-20124}
- i386: Add 'stibp' flag name (Eduardo Habkost) [Orabug: 29114828]
- i386: Add some MSR based features on Cascadelake-Server CPU model (Tao Xu) [Orabug: 29029615]
- i386: Update stepping of Cascadelake-Server (Tao Xu) [Orabug: 29029615]
- kvm: Use KVM_GET_MSR_INDEX_LIST for MSR_IA32_ARCH_CAPABILITIES support (Bandan Das) [Orabug: 29029615]
- x86: define a new MSR based feature word -- FEATURE_WORDS_ARCH_CAPABILITIES (Robert Hoo) [Orabug: 29029615]
- x86: Data structure changes to support MSR based features (Robert Hoo) [Orabug: 29029615]
- kvm: Add support to KVM_GET_MSR_FEATURE_INDEX_LIST and KVM_GET_MSRS system ioctl (Robert Hoo) [Orabug: 29029615]
- i386: Add CPUID bit and feature words for IA32_ARCH_CAPABILITIES MSR (Robert Hoo) [Orabug: 29029615]
- i386: Add new MSR indices for IA32_PRED_CMD and IA32_ARCH_CAPABILITIES (Robert Hoo) [Orabug: 29029615]
- Fix compilation issue: 'qapi_event_send_failover_primary_changed' not declared (Mark Kanda) [Orabug: 29121163]
- lsi_scsi: add support for PPR Extended Message (George Kennedy) [Orabug: 28879117]


Related CVEs


CVE-2018-20191
CVE-2018-16872
CVE-2018-20124
CVE-2018-20216
CVE-2018-20125
CVE-2018-20126

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) qemu-3.0.0-4.el7.src.rpm0475e9017bfab869f02cb5d0c7db2b8e-
ivshmem-tools-3.0.0-4.el7.aarch64.rpm78afbf8c5eed4800dbcff0186649a752-
qemu-3.0.0-4.el7.aarch64.rpmef1a4631fc745c84405fa60171d3cb95-
qemu-block-gluster-3.0.0-4.el7.aarch64.rpm0486633a050e5d8513c6326ca7efdf6f-
qemu-block-iscsi-3.0.0-4.el7.aarch64.rpmaec35cbfd506b2933003b8838d6018cd-
qemu-block-rbd-3.0.0-4.el7.aarch64.rpm86c14df58a03a63a2e8e128be7ff186c-
qemu-common-3.0.0-4.el7.aarch64.rpm71ab276a1dce662a09d8f79ffa461b50-
qemu-img-3.0.0-4.el7.aarch64.rpmc3143758efd5bf34537ef86d59bf7356-
qemu-kvm-3.0.0-4.el7.aarch64.rpm420070fa7eec3b92e6a0b66f18b7625a-
qemu-kvm-core-3.0.0-4.el7.aarch64.rpm80056cedd3bed66237efeb0938907eb8-
qemu-system-aarch64-3.0.0-4.el7.aarch64.rpmdc73d3e4f143204f6c4608332e6ae3a3-
qemu-system-aarch64-core-3.0.0-4.el7.aarch64.rpm51559252fb95daf26ca8a92adc16c97e-
Oracle Linux 7 (x86_64) qemu-3.0.0-4.el7.src.rpm0475e9017bfab869f02cb5d0c7db2b8e-
qemu-3.0.0-4.el7.x86_64.rpm06a71cf556b202fe00fc68549993d8d6-
qemu-block-gluster-3.0.0-4.el7.x86_64.rpm1861452f34bebc75c5f60183b69d868b-
qemu-block-iscsi-3.0.0-4.el7.x86_64.rpmcf13ac058147cdd14a2f8a94f64de2bb-
qemu-block-rbd-3.0.0-4.el7.x86_64.rpmfad1af24a7085e10f7ac36250d5edfb7-
qemu-common-3.0.0-4.el7.x86_64.rpm3303976e25cfdf4ef2c67e103874f270-
qemu-img-3.0.0-4.el7.x86_64.rpmf276f71eb41562963fa65cffd9cab8e9-
qemu-kvm-3.0.0-4.el7.x86_64.rpm160e2154d76711bbb781ba59b91b0d6f-
qemu-kvm-core-3.0.0-4.el7.x86_64.rpmdb0118b01cb401ffce08fb7066c7de34-
qemu-system-x86-3.0.0-4.el7.x86_64.rpmb2fde86fdac018aa5d434f0eb26f11d6-
qemu-system-x86-core-3.0.0-4.el7.x86_64.rpm41d6353843cef76b334edfd751d9020a-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete