ELSA-2020-3906

ELSA-2020-3906 - qemu-kvm security, bug fix, and enhancement update

Type:SECURITY
Impact:LOW
Release Date:2020-10-06

Description


[1.5.3-175.el7]
- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
(CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])

[1.5.3-174.el7]
- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
(qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
(QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
(CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
(Add support for newer glusterfs)


Related CVEs


CVE-2018-15746
CVE-2019-20382

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (x86_64) qemu-kvm-1.5.3-175.el7.src.rpmeac7d6842409eaa9fcc23b8558723c5115a5cc34730d4d20a25559a9e8e9efccELBA-2024-12732ol7_x86_64_latest
qemu-kvm-1.5.3-175.el7.src.rpmeac7d6842409eaa9fcc23b8558723c5115a5cc34730d4d20a25559a9e8e9efccELBA-2024-12732ol7_x86_64_u9_base
qemu-img-1.5.3-175.el7.x86_64.rpm46eeb151b7f3d22acb20fd83f2eb015f00549016158bd516e2a0cf85085172c1ELBA-2024-12732ol7_x86_64_latest
qemu-img-1.5.3-175.el7.x86_64.rpm46eeb151b7f3d22acb20fd83f2eb015f00549016158bd516e2a0cf85085172c1ELBA-2024-12732ol7_x86_64_u9_base
qemu-kvm-1.5.3-175.el7.x86_64.rpm5aeff53f5a2720cc4dfe9f6b43a1311f4b40209233a5902aab5d31edf58acde8ELBA-2024-12732ol7_x86_64_latest
qemu-kvm-1.5.3-175.el7.x86_64.rpm5aeff53f5a2720cc4dfe9f6b43a1311f4b40209233a5902aab5d31edf58acde8ELBA-2024-12732ol7_x86_64_u9_base
qemu-kvm-common-1.5.3-175.el7.x86_64.rpm355897727a19a007c78fcf51d94d0d5c2e5fbea792cfb1d4ceff8417ca0731e7ELBA-2022-4639ol7_x86_64_latest
qemu-kvm-common-1.5.3-175.el7.x86_64.rpm355897727a19a007c78fcf51d94d0d5c2e5fbea792cfb1d4ceff8417ca0731e7ELBA-2022-4639ol7_x86_64_u9_base
qemu-kvm-tools-1.5.3-175.el7.x86_64.rpmfed894bd6c0b3023180acec56975575aebf0821dfefa6e14877257de9f48ca55ELBA-2022-4639ol7_x86_64_latest
qemu-kvm-tools-1.5.3-175.el7.x86_64.rpmfed894bd6c0b3023180acec56975575aebf0821dfefa6e14877257de9f48ca55ELBA-2022-4639ol7_x86_64_u9_base



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete