[El-errata] ELSA-2015-1793 Moderate: Oracle Linux 7 qemu-kvm security fix update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Sep 15 13:26:07 PDT 2015
Oracle Linux Security Advisory ELSA-2015-1793
http://linux.oracle.com/errata/ELSA-2015-1793.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
libcacard-1.5.3-86.el7_1.6.i686.rpm
libcacard-1.5.3-86.el7_1.6.x86_64.rpm
libcacard-devel-1.5.3-86.el7_1.6.i686.rpm
libcacard-devel-1.5.3-86.el7_1.6.x86_64.rpm
libcacard-tools-1.5.3-86.el7_1.6.x86_64.rpm
qemu-img-1.5.3-86.el7_1.6.x86_64.rpm
qemu-kvm-1.5.3-86.el7_1.6.x86_64.rpm
qemu-kvm-common-1.5.3-86.el7_1.6.x86_64.rpm
qemu-kvm-tools-1.5.3-86.el7_1.6.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/qemu-kvm-1.5.3-86.el7_1.6.src.rpm
Description of changes:
[1.5.3-86.el7_1.6]
- kvm-rtl8139-avoid-nested-ifs-in-IP-header-parsing-CVE-20.patch
[bz#1248764]
- kvm-rtl8139-drop-tautologous-if-ip-.-statement-CVE-2015-.patch
[bz#1248764]
- kvm-rtl8139-skip-offload-on-short-Ethernet-IP-header-CVE.patch
[bz#1248764]
- kvm-rtl8139-check-IP-Header-Length-field-CVE-2015-5165.patch [bz#1248764]
- kvm-rtl8139-check-IP-Total-Length-field-CVE-2015-5165.patch [bz#1248764]
- kvm-rtl8139-skip-offload-on-short-TCP-header-CVE-2015-51.patch
[bz#1248764]
- kvm-rtl8139-check-TCP-Data-Offset-field-CVE-2015-5165.patch [bz#1248764]
- Resolves: bz#1248764
(CVE-2015-5165 qemu-kvm: Qemu: rtl8139 uninitialized heap memory
information leakage to guest [rhel-7.1.z])
More information about the El-errata
mailing list