[El-errata] ELSA-2019-1883 Important: Oracle Linux 7 qemu-kvm security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Jul 30 07:04:04 PDT 2019


Oracle Linux Security Advisory ELSA-2019-1883

http://linux.oracle.com/errata/ELSA-2019-1883.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
qemu-img-1.5.3-160.el7_6.3.x86_64.rpm
qemu-kvm-1.5.3-160.el7_6.3.x86_64.rpm
qemu-kvm-common-1.5.3-160.el7_6.3.x86_64.rpm
qemu-kvm-tools-1.5.3-160.el7_6.3.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/qemu-kvm-1.5.3-160.el7_6.3.src.rpm



Description of changes:

[1.5.3-160.el7_6.3]
- kvm-slirp-check-sscanf-result-when-emulating-ident.patch [bz#1669067]
- kvm-slirp-fix-big-little-endian-conversion-in-ident-prot.patch 
[bz#1669067]
- kvm-slirp-ensure-there-is-enough-space-in-mbuf-to-null-t.patch 
[bz#1669067]
- kvm-slirp-don-t-manipulate-so_rcv-in-tcp_emu.patch [bz#1669067]
- Resolves: bz#1669067
   (CVE-2019-6778 qemu-kvm: QEMU: slirp: heap buffer overflow in 
tcp_emu() [rhel-7.6.z])




More information about the El-errata mailing list