Lucene search
OracleLinuxELSA-2019-2607HistorySep 04, 2019 - 12:00 a.m.
qemu-kvm security update
2019-09-0400:00:00
linux.oracle.com
69
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
[1.5.3-167.el7_7.1]
- kvm-qxl-check-release-info-object.patch [bz#1732337]
- kvm-Fix-heap-overflow-in-ip_reass-on-big-packet-input.patch [bz#1734748]
- Resolves: bz#1732337
(CVE-2019-12155 qemu-kvm: QEMU: qxl: null pointer dereference while releasing spice resources [rhel-7] [rhel-7.7.z]) - Resolves: bz#1734748
(CVE-2019-14378 qemu-kvm: QEMU: slirp: heap buffer overflow during packet reassembly [rhel-7.7.z])
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | qemu-kvm | < 1.5.3-167.el7_7.1 | qemu-kvm-1.5.3-167.el7_7.1.src.rpm |
| oracle linux | 7 | x86_64 | qemu-img | < 1.5.3-167.el7_7.1 | qemu-img-1.5.3-167.el7_7.1.x86_64.rpm |
| oracle linux | 7 | x86_64 | qemu-kvm | < 1.5.3-167.el7_7.1 | qemu-kvm-1.5.3-167.el7_7.1.x86_64.rpm |
| oracle linux | 7 | x86_64 | qemu-kvm-common | < 1.5.3-167.el7_7.1 | qemu-kvm-common-1.5.3-167.el7_7.1.x86_64.rpm |
| oracle linux | 7 | x86_64 | qemu-kvm-tools | < 1.5.3-167.el7_7.1 | qemu-kvm-tools-1.5.3-167.el7_7.1.x86_64.rpm |
Related
nessus
nessus
RHEL 7 : Virtualization Manager (RHSA-2019:3179)
2019-10-24 00:00:00
RHEL 7 : qemu-kvm-rhev (RHSA-2020:1216)
2020-03-31 00:00:00
SUSE SLES11 Security Update : kvm (SUSE-SU-2019:14151-1)
2021-06-10 00:00:00
redhat
redhat
(RHSA-2019:3179) Important: qemu-kvm-rhev security and bug fix update
2019-10-22 15:12:07
(RHSA-2019:3742) Important: qemu-kvm-rhev security update
2019-11-06 15:01:04
(RHSA-2019:4344) Important: qemu-kvm-rhev security update
2019-12-19 15:41:46
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:2157-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for qemu (openSUSE-SU-2019:2059-1)
2019-09-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:14151-1)
2021-06-09 00:00:00
suse
suse
Security update for qemu (important)
2019-09-03 00:00:00
Security update for qemu (important)
2019-09-01 00:00:00
Security update for qemu (important)
2019-11-14 00:00:00
oraclelinux
oraclelinux
qemu-kvm security, bug fix, and enhancement update
2020-04-06 00:00:00
container-tools:1.0 security and bug fix update
2019-11-14 00:00:00
qemu-kvm security, bug fix, and enhancement update
2020-02-05 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2019-11-14 00:00:00
QEMU vulnerabilities
2019-11-14 00:00:00
prion
prion
Null pointer dereference
2019-05-24 16:29:00
Heap overflow
2019-07-29 11:15:00
osv
osv
CVE-2019-12155
2019-05-24 16:29:00
CVE-2019-14378
2019-07-29 11:15:11
Important: container-tools:1.0 security and bug fix update
2019-11-05 17:52:13
veracode
veracode
Denial Of Service (DoS)
2019-09-04 00:09:43
Denial Of Service (DoS)
2019-10-23 00:09:56
centos
centos
qemu security update
2019-09-18 18:53:46
qemu security update
2020-02-06 00:20:07
qemu security update
2020-03-10 20:44:03
redhatcve
redhatcve
CVE-2019-12155
2020-04-06 17:08:51
CVE-2019-14378
2020-04-09 10:06:01
cve
cve
CVE-2019-12155
2019-05-24 16:29:00
CVE-2019-14378
2019-07-29 11:15:00
ubuntucve
ubuntucve
CVE-2019-12155
2019-05-24 00:00:00
CVE-2019-14378
2019-07-29 00:00:00
f5
f5
K75042242 : QEMU 4.0 vulnerability CVE-2019-12155
2020-12-21 00:00:00
K25423748 : QEMU vulnerability CVE-2019-14378
2019-09-06 00:00:00
debiancve
debiancve
CVE-2019-12155
2019-05-24 16:29:00
CVE-2019-14378
2019-07-29 11:15:00
amazon
amazon
Important: qemu
2020-03-02 23:45:00
Important: qemu
2019-07-18 17:45:00
Important: qemu-kvm
2020-11-14 01:23:00
fedora
fedora
[SECURITY] Fedora 30 Update: libslirp-4.0.0-2.fc30
2019-08-11 01:14:53
[SECURITY] Fedora 30 Update: qemu-3.1.0-9.fc30
2019-07-09 00:56:39
[SECURITY] Fedora 29 Update: qemu-3.0.1-4.fc29
2019-07-09 02:25:09
zdt
zdt
QEMU - Denial of Service Exploit
2019-08-30 00:00:00
packetstorm
packetstorm
QEMU Denial Of Service
2019-08-30 00:00:00
debian
debian
[SECURITY] [DSA 4512-1] qemu security update
2019-09-02 17:58:18
[SECURITY] [DLA 1927-1] qemu security update
2019-09-20 09:19:02
[SECURITY] [DSA 4506-1] qemu security update
2019-08-24 09:55:59
rocky
rocky
container-tools:1.0 security and bug fix update
2019-11-05 17:52:13
virt:rhel security, bug fix, and enhancement update
2019-11-05 17:33:34
container-tools:rhel8 security, bug fix, and enhancement update
2019-11-05 17:41:57
almalinux
almalinux
Important: container-tools:1.0 security and bug fix update
2019-11-05 17:52:13
Important: container-tools:rhel8 security, bug fix, and enhancement update
2019-11-05 17:41:57
Low: virt:rhel security, bug fix, and enhancement update
2019-11-05 17:33:34
ibm
ibm
Security Bulletin: Vyatta 5600 vRouter Software Patches - Release 1801-ze
2020-07-24 21:16:35
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
Related for ELSA-2019-2607