ELSA-2020-0366

ELSA-2020-0366 - qemu-kvm security, bug fix, and enhancement update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2020-02-05

Description

[1.5.3-167.el7_7.4]
- kvm-target-i386-add-MDS-NO-feature.patch [bz#1755333]
- Resolves: bz#1755333
([Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm [rhel-7.7.z])

[1.5.3-167.el7_7.3]
- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771960]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771960]
- Resolves: bz#1771960
(CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.7.z])

[1.5.3-167.el7_7.2]
- kvm-target-i386-Merge-feature-filtering-checking-functio.patch [bz#1730606]
- kvm-target-i386-Isolate-KVM-specific-code-on-CPU-feature.patch [bz#1730606]
- kvm-i386-Add-new-MSR-indices-for-IA32_PRED_CMD-and-IA32_.patch [bz#1730606]
- kvm-i386-Add-CPUID-bit-and-feature-words-for-IA32_ARCH_C.patch [bz#1730606]
- kvm-Add-support-to-KVM_GET_MSR_FEATURE_INDEX_LIST-an.patch [bz#1730606]
- kvm-x86-Data-structure-changes-to-support-MSR-based-feat.patch [bz#1730606]
- kvm-x86-define-a-new-MSR-based-feature-word-FEATURE_WORD.patch [bz#1730606]
- kvm-Use-KVM_GET_MSR_INDEX_LIST-for-MSR_IA32_ARCH_CAP.patch [bz#1730606]
- kvm-i386-kvm-Disable-arch_capabilities-if-MSR-can-t-be-s.patch [bz#1730606]
- kvm-Remove-arch-capabilities-deprecation.patch [bz#1730606]
- Resolves: bz#1730606
([Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm [rhel-7.7.z])

Related CVEs

CVE-2019-11135

CVE-2019-14378

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 7 (x86_64)	qemu-kvm-1.5.3-167.el7_7.4.src.rpm	28f3e4738bdde306a727317c1ff82fa4e9e9137bcd80f1c8adf589c480405f1c	ELBA-2024-12732	ol7_x86_64_latest
	qemu-kvm-1.5.3-167.el7_7.4.src.rpm	28f3e4738bdde306a727317c1ff82fa4e9e9137bcd80f1c8adf589c480405f1c	ELBA-2024-12732	ol7_x86_64_u7_patch
	qemu-img-1.5.3-167.el7_7.4.x86_64.rpm	06412feb57cc7f218b912e3e266ae6c1c8e7c3fe4217f8f3845f6bc2c3780a43	ELBA-2024-12732	ol7_x86_64_latest
	qemu-img-1.5.3-167.el7_7.4.x86_64.rpm	06412feb57cc7f218b912e3e266ae6c1c8e7c3fe4217f8f3845f6bc2c3780a43	ELBA-2024-12732	ol7_x86_64_u7_patch
	qemu-kvm-1.5.3-167.el7_7.4.x86_64.rpm	8c489d2d9c58f89f60828e3ad554d96d2cf07cae7d7f63c684c71b1f8909fd20	ELBA-2024-12732	ol7_x86_64_latest
	qemu-kvm-1.5.3-167.el7_7.4.x86_64.rpm	8c489d2d9c58f89f60828e3ad554d96d2cf07cae7d7f63c684c71b1f8909fd20	ELBA-2024-12732	ol7_x86_64_u7_patch
	qemu-kvm-common-1.5.3-167.el7_7.4.x86_64.rpm	ef3a1d5c4b77f7cc4759ce27bb51684919c06a01a85b2b91e58f5ec6defd7e6f	ELBA-2022-4639	ol7_x86_64_latest
	qemu-kvm-common-1.5.3-167.el7_7.4.x86_64.rpm	ef3a1d5c4b77f7cc4759ce27bb51684919c06a01a85b2b91e58f5ec6defd7e6f	ELBA-2022-4639	ol7_x86_64_u7_patch
	qemu-kvm-tools-1.5.3-167.el7_7.4.x86_64.rpm	f7ab92d122c65f266d6a0d23386084d7a7877058cd8144615b6503e9aa317c5b	ELBA-2022-4639	ol7_x86_64_latest
	qemu-kvm-tools-1.5.3-167.el7_7.4.x86_64.rpm	f7ab92d122c65f266d6a0d23386084d7a7877058cd8144615b6503e9aa317c5b	ELBA-2022-4639	ol7_x86_64_u7_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team