Описание
ELSA-2015-0999: qemu-kvm security update (IMPORTANT)
[1.5.3-86.el7_1.2]
- kvm-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch [bz#1219269]
- Resolves: bz#1219269 (EMBARGOED CVE-2015-3456 qemu-kvm: qemu: floppy disk controller flaw [rhel-7.1.z])
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
libcacard
1.5.3-86.el7_1.2
libcacard-devel
1.5.3-86.el7_1.2
libcacard-tools
1.5.3-86.el7_1.2
qemu-img
1.5.3-86.el7_1.2
qemu-kvm
1.5.3-86.el7_1.2
qemu-kvm-common
1.5.3-86.el7_1.2
qemu-kvm-tools
1.5.3-86.el7_1.2
Связанные CVE
Связанные уязвимости
The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.
The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.
The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.
The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and ear ...
