[El-errata] ELSA-2021-2322 Moderate: Oracle Linux 7 qemu-kvm security update

Wed Jun 9 14:48:34 PDT 2021

Oracle Linux Security Advisory ELSA-2021-2322

http://linux.oracle.com/errata/ELSA-2021-2322.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
qemu-img-1.5.3-175.el7_9.4.x86_64.rpm
qemu-kvm-1.5.3-175.el7_9.4.x86_64.rpm
qemu-kvm-common-1.5.3-175.el7_9.4.x86_64.rpm
qemu-kvm-tools-1.5.3-175.el7_9.4.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/qemu-kvm-1.5.3-175.el7_9.4.src.rpm

Related CVEs:

CVE-2020-29443

Description of changes:

[1.5.3-175.el7_9.4]
- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])