Описание
Security update for qemu
qemu / kvm was updated to fix a security issue and some bugs.
Security issue fixed:
-
CVE-2015-3456: Fixed a buffer overflow in the floppy drive emulation, which could be used to denial of service attacks or potential code execution against the host.
-
CVE-2015-1779: Fixed insufficient resource limiting in the VNC websockets decoder.
Bugs fixed:
-
qemu truncates vhd images in virt-rescue (bsc#886378)
-
Update kvm-supported.txt with the current rbd support status.
-
enable rbd build on x86_64 (qemu-block-rbd package) (FATE#318349)
Список пакетов
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server for SAP Applications 12
Ссылки
- Link for SUSE-SU-2015:0896-1
- E-Mail link for SUSE-SU-2015:0896-1
- SUSE Security Ratings
- SUSE Bug 886378
- SUSE Bug 924018
- SUSE Bug 929339
- SUSE CVE CVE-2015-1779 page
- SUSE CVE CVE-2015-3456 page
Описание
The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service (memory and CPU consumption) via a large (1) websocket payload or (2) HTTP headers section.
Затронутые продукты
Ссылки
- CVE-2015-1779
- SUSE Bug 924018
- SUSE Bug 962632
Описание
The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.
Затронутые продукты
Ссылки
- CVE-2015-3456
- SUSE Bug 929339
- SUSE Bug 932770
- SUSE Bug 935900