[El-errata] ELSA-2015-1943 Moderate: Oracle Linux 7 qemu-kvm security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Oct 27 08:18:27 PDT 2015


Oracle Linux Security Advisory ELSA-2015-1943

http://linux.oracle.com/errata/ELSA-2015-1943.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
libcacard-1.5.3-86.el7_1.8.i686.rpm
libcacard-1.5.3-86.el7_1.8.x86_64.rpm
libcacard-devel-1.5.3-86.el7_1.8.i686.rpm
libcacard-devel-1.5.3-86.el7_1.8.x86_64.rpm
libcacard-tools-1.5.3-86.el7_1.8.x86_64.rpm
qemu-img-1.5.3-86.el7_1.8.x86_64.rpm
qemu-kvm-1.5.3-86.el7_1.8.x86_64.rpm
qemu-kvm-common-1.5.3-86.el7_1.8.x86_64.rpm
qemu-kvm-tools-1.5.3-86.el7_1.8.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/qemu-kvm-1.5.3-86.el7_1.8.src.rpm



Description of changes:

[1.5.3-86.el7_1.8]
- kvm-qtest-ide-test-disable-flush-test.patch [bz#1273098]
- Resolves: bz#1273098
   (qemu-kvm build failure race condition in tests/ide-test)

[1.5.3-86.el7_1.7]
- kvm-CVE-2015-1779-incrementally-decode-websocket-frames.patch [bz#1205050]
- kvm-CVE-2015-1779-limit-size-of-HTTP-headers-from-websoc.patch 
[bz#1205050]
- Resolves: bz#1205050
   (CVE-2015-1779 qemu-kvm: qemu: vnc: insufficient resource limiting in 
VNC websockets decoder [rhel-7.1.z])





More information about the El-errata mailing list