OVMSA-2020-0015 - qemu-kvm security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2020-04-10 |
Description
[0.12.1.2-2.506.el6_10.7]
- kvm-slirp-disable-tcp_emu.patch [bz#1791680]
- kvm-slirp-add-slirp_fmt-helpers.patch [bz#1798966]
- kvm-tcp_emu-fix-unsafe-snprintf-usages.patch [bz#1798966]
- Resolves: bz#1791680
(QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-6])
- Resolves: bz#1798966
(CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-6.10.z])
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
|
| Oracle VM 3.4 (x86_64) | qemu-kvm-0.12.1.2-2.506.el6_10.7.src.rpm | 920dae69c41b7047ac66e1bfcafef7da0fef4408ba9f33c02f6513d89c453d6b | OVMSA-2020-0043 | ovm34_x86_64_latest |
| qemu-img-0.12.1.2-2.506.el6_10.7.x86_64.rpm | 17015527555bc23d554965d644b14999bbba5c5d9a464534e9b18ca1781659d7 | OVMSA-2020-0043 | ovm34_x86_64_latest |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
