OVMSA-2016-0096

ULN >
Oracle Linux Errata repository >
OVMSA-2016-0096

OVMSA-2016-0096 - qemu-kvm security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2016-08-09

Description

[0.12.1.2-2.491.el6_8.3]
- kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch [bz#1359724]
- Resolves: bz#1359724
(EMBARGOED CVE-2016-5403 qemu-kvm: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS [rhel-6.8.z])

[0.12.1.2-2.491.el6_8.2]
- kvm-vga-add-sr_vbe-register-set.patch [bz#1347192]
- Resolves: bz#1347192
(Regression from CVE-2016-3712: windows installer fails to start)

Related CVEs

CVE-2016-5403

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle VM 3.4 (x86_64)	qemu-kvm-0.12.1.2-2.491.el6_8.3.src.rpm	047c820e092b2112b5beb7c72d6a958cf11bbeaeed2e8b9a312f56a7b009b1b0	OVMSA-2020-0043	ovm34_x86_64_latest
	qemu-img-0.12.1.2-2.491.el6_8.3.x86_64.rpm	14ba2e4fb2e2fa9f32d1e751b895075a74cecdd10884cf27044cf117220c230a	OVMSA-2020-0043	ovm34_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691