Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2022-9432

Опубликовано: 26 мая 2022
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2022-9432: qemu security update (IMPORTANT)

[15:4.2.1-17.el7]

  • arm/acpi: fix an out of spec _UID for PCI root (Michael S. Tsirkin)
  • arm/acpi: fix duplicated _UID of PCI interrupt link devices (Heyi Guo)
  • arm/acpi: fix PCI _PRT definition (Heyi Guo)
  • docs: fix references to docs/devel/atomics.rst (Stefano Garzarella) [Orabug: 33659123]
  • rcu: do not mention atomic_mb_read/set in documentation (Paolo Bonzini) [Orabug: 33659123]
  • atomics: update documentation (Paolo Bonzini) [Orabug: 33659123]
  • atomics: convert to reStructuredText (Paolo Bonzini) [Orabug: 33659123]
  • async: use explicit memory barriers (Paolo Bonzini) [Orabug: 33659123]
  • aio-wait: delegate polling of main AioContext if BQL not held (Paolo Bonzini) [Orabug: 33659123]
  • qapi: Add '@allow-write-only-overlay' feature for 'blockdev-snapshot' (Peter Krempa) [Orabug: 33888021]
  • iotests: Add iothread cases to 155 (Kevin Wolf) [Orabug: 33888021]
  • block: Fix cross-AioContext blockdev-snapshot (Kevin Wolf) [Orabug: 33888021]
  • iotests: Test mirror with temporarily disabled target backing file (Kevin Wolf) [Orabug: 33888021]
  • iotests: Fix run_job() with use_log=False (Kevin Wolf) [Orabug: 33888021]
  • block: Relax restrictions for blockdev-snapshot (Kevin Wolf) [Orabug: 33888021]
  • block: Make bdrv_get_cumulative_perm() public (Kevin Wolf) [Orabug: 33888021]
  • iotests: Use complete_and_wait() in 155 (Max Reitz) [Orabug: 33888021]
  • iotests: Support job-complete in run_job() (Kevin Wolf) [Orabug: 33888021]
  • linux-headers: update again to 5.8 (Paolo Bonzini) [Orabug: 34022218]
  • virtio-net: fix map leaking on error during receive (Jason Wang) [Orabug: 33941879] {CVE-2022-26353}
  • vhost-vsock: detach the virqueue element in case of error (Stefano Garzarella) [Orabug: 33941844] {CVE-2022-26354}
  • virtio-net: fix use after unmap/free for sg (Jason Wang) [Orabug: 33972912] {CVE-2021-3748}
  • migration: Report the error returned when save_live_iterate fails (David Edmondson)

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

ivshmem-tools

4.2.1-17.el7

qemu

4.2.1-17.el7

qemu-block-gluster

4.2.1-17.el7

qemu-block-iscsi

4.2.1-17.el7

qemu-block-rbd

4.2.1-17.el7

qemu-common

4.2.1-17.el7

qemu-img

4.2.1-17.el7

qemu-kvm

4.2.1-17.el7

qemu-kvm-core

4.2.1-17.el7

qemu-system-aarch64

4.2.1-17.el7

qemu-system-aarch64-core

4.2.1-17.el7

Oracle Linux x86_64

qemu

4.2.1-17.el7

qemu-block-gluster

4.2.1-17.el7

qemu-block-iscsi

4.2.1-17.el7

qemu-block-rbd

4.2.1-17.el7

qemu-common

4.2.1-17.el7

qemu-img

4.2.1-17.el7

qemu-kvm

4.2.1-17.el7

qemu-kvm-core

4.2.1-17.el7

qemu-system-x86

4.2.1-17.el7

qemu-system-x86-core

4.2.1-17.el7

Связанные CVE

CVE-2022-26354
CVE-2022-26353
CVE-2021-3748

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2022-9460

oracle-oval
около 3 лет назад

ELSA-2022-9460: kvm_utils security update (IMPORTANT)

oracle-oval логотип

ELSA-2022-5263

oracle-oval
около 3 лет назад

ELSA-2022-5263: qemu-kvm security and bug fix update (MODERATE)

suse-cvrf логотип

SUSE-SU-2022:2260-1

suse-cvrf
около 3 лет назад

Security update for qemu

rocky логотип

RLSA-2022:5821

rocky
около 3 лет назад

Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

oracle-oval логотип

ELSA-2022-5821

oracle-oval
около 3 лет назад

ELSA-2022-5821: virt:ol and virt-devel:ol security, bug fix, and enhancement update (MODERATE)