Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2015:0943-1

Опубликовано: 24 июн. 2013
Источник: suse-cvrf

Описание

Security update for KVM

This update fixes a file permission issue with qga (the QEMU Guest Agent) from the qemu/kvm package and includes several bug-fixes.

(bnc#818182) (CVE-2013-2007) (bnc#786813) (bnc#725008) (bnc#712137) (bnc#824340)

Security Issues:

* CVE-2013-2007 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2007>

Список пакетов

SUSE Linux Enterprise Server 11 SP2
kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server 11 SP2-LTSS
kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server for SAP Applications 11 SP2
kvm-0.15.1-0.27.1

Ссылки

Описание

The bdrv_open function in Qemu 1.0 does not properly handle the failure of the mkstemp function, when in snapshot node, which allows local users to overwrite or read arbitrary files via a symlink attack on an unspecified temporary file.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1
Ссылки

Описание

Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a "device model's address space."

Затронутые продукты
SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1
Ссылки

Описание

The qemu guest agent in Qemu 1.4.1 and earlier, as used by Xen, when started in daemon mode, uses weak permissions for certain files, which allows local users to read and write to these files.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1
Ссылки

Описание

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP2-LTSS:kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server 11 SP2:kvm-0.15.1-0.27.1
SUSE Linux Enterprise Server for SAP Applications 11 SP2:kvm-0.15.1-0.27.1
Ссылки