Описание
ELSA-2015-2694: qemu-kvm security update (IMPORTANT)
[0.12.1.2-2.479.el6_7.3]
- kvm-net-pcnet-add-check-to-validate-receive-data-size-CV.patch [bz#1287950]
- kvm-pcnet-fix-rx-buffer-overflow-CVE-2015-7512.patch [bz#1287950]
- Resolves: bz#1287950 (CVE-2015-7504 CVE-2015-7512 qemu-kvm: various flaws [rhel-6.7.z])
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
qemu-guest-agent
0.12.1.2-2.479.el6_7.3
qemu-img
0.12.1.2-2.479.el6_7.3
qemu-kvm
0.12.1.2-2.479.el6_7.3
qemu-kvm-tools
0.12.1.2-2.479.el6_7.3
Oracle Linux i686
qemu-guest-agent
0.12.1.2-2.479.el6_7.3
Связанные CVE
Связанные уязвимости
Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode.
Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode.
Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode.
Heap-based buffer overflow in the pcnet_receive function in hw/net/pcn ...