[El-errata] ELSA-2020-1208 Important: Oracle Linux 7 qemu-kvm security update

Fri Apr 10 09:45:48 PDT 2020

Oracle Linux Security Advisory ELSA-2020-1208

http://linux.oracle.com/errata/ELSA-2020-1208.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
qemu-img-1.5.3-173.el7_8.1.x86_64.rpm
qemu-kvm-1.5.3-173.el7_8.1.x86_64.rpm
qemu-kvm-common-1.5.3-173.el7_8.1.x86_64.rpm
qemu-kvm-tools-1.5.3-173.el7_8.1.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/qemu-kvm-1.5.3-173.el7_8.1.src.rpm

Description of changes:

[1.5.3-173.el7_8.1]
- kvm-util-add-slirp_fmt-helpers.patch [bz#1798970]
- kvm-tcp_emu-fix-unsafe-snprintf-usages.patch [bz#1798970]
- Resolves: bz#1798970
(CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe 
snprintf() usages [rhel-7.8.z])