ELSA-2013-0609

Опубликовано: 07 мар. 2013

Источник: oracle-oval

Платформа: Oracle Linux 6

Описание

ELSA-2013-0609: qemu-kvm security update (IMPORTANT)

[qemu-kvm-0.12.1.2-2.355.el6_4.2]

kvm-e1000-Discard-packets-that-are-too-long-if-SBP-and-L.patch [bz#910841]
kvm-e1000-Discard-oversized-packets-based-on-SBP-LPE.patch [bz#910841]
Resolves: bz#910841 (CVE-2012-6075 qemu (e1000 device driver): Buffer overflow when processing large packets when SBP and LPE flags are disabled [rhel-6.4.z])

[qemu-kvm-0.12.1.2-2.355.el6_4.1]

kvm-Revert-e1000-no-need-auto-negotiation-if-link-was-do.patch [bz#907397]
Resolves: bz#907397 (Patch 'e1000: no need auto-negotiation if link was down' may break e1000 guest)

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

qemu-guest-agent

0.12.1.2-2.355.el6_4.2

qemu-guest-agent-win32

0.12.1.2-2.355.el6_4.2

qemu-img

0.12.1.2-2.355.el6_4.2

qemu-kvm

0.12.1.2-2.355.el6_4.2

qemu-kvm-tools

0.12.1.2-2.355.el6_4.2

Oracle Linux i686

qemu-guest-agent

0.12.1.2-2.355.el6_4.2

Связанные CVE

CVE-2012-6075

Ссылки на источники

Связанные уязвимости

CVE-2012-6075

ubuntu

больше 12 лет назад

Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (guest OS crash) and possibly execute arbitrary guest code via a large packet.

CVE-2012-6075

redhat

больше 12 лет назад

CVE-2012-6075

nvd

больше 12 лет назад

CVE-2012-6075

debian

больше 12 лет назад

Buffer overflow in the e1000_receive function in the e1000 device driv ...

GHSA-mw8m-jhfq-5hv9

github

больше 3 лет назад