Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2016:0020-1

Опубликовано: 05 янв. 2016
Источник: suse-cvrf

Описание

Security update for kvm

This update for kvm fixes the following issues:

Security issues fixed:

  • CVE-2015-7512: The receive packet size is now checked in the emulated pcnet driver, eliminating buffer overflow and potential security issue by malicious guest systems. (bsc#957162)
  • CVE-2015-8345: A infinite loop in processing command block list was fixed that could be exploit by malicious guest systems (bsc#956829).

Bugs fixed:

  • Fix cases of wrong clock values in kvmclock timekeeping (bsc#947164 and bsc#953187)
  • Enforce pxe rom sizes to ensure migration compatibility. (bsc#950590)

Список пакетов

SUSE Linux Enterprise Desktop 11 SP3
kvm-1.4.2-37.1
SUSE Linux Enterprise Server 11 SP3
kvm-1.4.2-37.1
SUSE Linux Enterprise Server 11 SP3-TERADATA
kvm-1.4.2-37.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3
kvm-1.4.2-37.1

Ссылки

Описание

Buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU, when a guest NIC has a larger MTU, allows remote attackers to cause a denial of service (guest OS crash) or execute arbitrary code via a large packet.

Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP3:kvm-1.4.2-37.1
SUSE Linux Enterprise Server 11 SP3-TERADATA:kvm-1.4.2-37.1
SUSE Linux Enterprise Server 11 SP3:kvm-1.4.2-37.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3:kvm-1.4.2-37.1
Ссылки

Описание

The eepro100 emulator in QEMU qemu-kvm blank allows local guest users to cause a denial of service (application crash and infinite loop) via vectors involving the command block list.

Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP3:kvm-1.4.2-37.1
SUSE Linux Enterprise Server 11 SP3-TERADATA:kvm-1.4.2-37.1
SUSE Linux Enterprise Server 11 SP3:kvm-1.4.2-37.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3:kvm-1.4.2-37.1
Ссылки