OVMSA-2017-0047 - qemu-kvm security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2017-03-01 |
Description
[0.12.1.2-2.491.el6_8.7]
- kvm-cirrus-fix-patterncopy-checks.patch [bz#1420486 bz#1420488]
- kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch [bz#1420486 bz#1420488]
- kvm-cirrus-add-blit_is_unsafe-call-to-cirrus_bitblt_cput.patch [bz#1420486 bz#1420488]
- Resolves: bz#1420486
(EMBARGOED CVE-2017-2620 qemu-kvm: Qemu: display: cirrus: potential arbitrary code execution via cirrus_bitblt_cputovideo [rhel-6.8.z])
- Resolves: bz#1420488
(EMBARGOED CVE-2017-2620 qemu-kvm-rhev: Qemu: display: cirrus: potential arbitrary code execution via cirrus_bitblt_cputovideo [rhel-6.8.z])
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
|
| Oracle VM 3.4 (x86_64) | qemu-kvm-0.12.1.2-2.491.el6_8.7.src.rpm | 04c534d0f1158f951cabe9b34ac993c72c062d01c04765de22f82bee0741e92d | OVMSA-2020-0043 | ovm34_x86_64_latest |
| qemu-img-0.12.1.2-2.491.el6_8.7.x86_64.rpm | b4c8f6c05cc25b262373c08cc6fa71471719e70b3eddc85d22357e319b87b9d0 | OVMSA-2020-0043 | ovm34_x86_64_latest |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
