ELSA-2020-1403

ELSA-2020-1403 - qemu-kvm security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2020-04-09

Description


[0.12.1.2-2.506.el6_10.7]
- kvm-slirp-disable-tcp_emu.patch [bz#1791680]
- kvm-slirp-add-slirp_fmt-helpers.patch [bz#1798966]
- kvm-tcp_emu-fix-unsafe-snprintf-usages.patch [bz#1798966]
- Resolves: bz#1791680
(QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-6])
- Resolves: bz#1798966
(CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-6.10.z])


Related CVEs


CVE-2020-8608

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) qemu-kvm-0.12.1.2-2.506.el6_10.7.src.rpm8ebf77003095e408a6f56138481c74e5ELSA-2020-4056
qemu-guest-agent-0.12.1.2-2.506.el6_10.7.i686.rpmff88a6c451eb603709f3fbadcac25da5ELSA-2020-4056
Oracle Linux 6 (x86_64) qemu-kvm-0.12.1.2-2.506.el6_10.7.src.rpm8ebf77003095e408a6f56138481c74e5ELSA-2020-4056
qemu-guest-agent-0.12.1.2-2.506.el6_10.7.x86_64.rpme3a8a4193bd4d987260f376aa8833defELSA-2020-4056
qemu-img-0.12.1.2-2.506.el6_10.7.x86_64.rpm8a91e39de237b90573c0e1102373792aELSA-2020-4056
qemu-kvm-0.12.1.2-2.506.el6_10.7.x86_64.rpmc6bc1c63071f1693b36b9c24f41388baELSA-2020-4056
qemu-kvm-tools-0.12.1.2-2.506.el6_10.7.x86_64.rpmb0bcfe2abf9c193b7f68758d94cd96f4ELSA-2020-4056



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete