qemu security update

2021-08-1700:00:00

linux.oracle.com

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

JSON

[15:4.2.1-11.el7]

pvrdma: Fix the ring init error flow (CVE-2021-3608) (Marcel Apfelbaum) [Orabug: 33120142] {CVE-2021-3608}
pvrdma: Ensure correct input on ring init (CVE-2021-3607) (Marcel Apfelbaum) [Orabug: 33120146] {CVE-2021-3607}
hw/rdma: Fix possible mremap overflow in the pvrdma device (CVE-2021-3582) (Marcel Apfelbaum) [Orabug: 33120084] {CVE-2021-3582}
vhost-user-gpu: reorder free calls. (Gerd Hoffmann) [Orabug: 32950701] {CVE-2021-3544}
vhost-user-gpu: abstract vg_cleanup_mapping_iov (Li Qiang) [Orabug: 32950716] {CVE-2021-3546}
vhost-user-gpu: fix OOB write in ‘virgl_cmd_get_capset’ (CVE-2021-3546) (Li Qiang) [Orabug: 32950716] {CVE-2021-3546}
vhost-user-gpu: fix memory leak in ‘virgl_resource_attach_backing’ (CVE-2021-3544) (Li Qiang) [Orabug: 32950701] {CVE-2021-3544}
vhost-user-gpu: fix memory leak in ‘virgl_cmd_resource_unref’ (CVE-2021-3544) (Li Qiang) [Orabug: 32950701] {CVE-2021-3544}
vhost-user-gpu: fix memory leak while calling ‘vg_resource_unref’ (CVE-2021-3544) (Li Qiang) [Orabug: 32950701] {CVE-2021-3544}
vhost-user-gpu: fix memory leak in vg_resource_attach_backing (CVE-2021-3544) (Li Qiang) [Orabug: 32950701] {CVE-2021-3544}
vhost-user-gpu: fix resource leak in ‘vg_resource_create_2d’ (CVE-2021-3544) (Li Qiang) [Orabug: 32950701] {CVE-2021-3544}
vhost-user-gpu: fix memory disclosure in virgl_cmd_get_capset_info (CVE-2021-3545) (Li Qiang) [Orabug: 32950708] {CVE-2021-3545}
usb: limit combined packets to 1 MiB (CVE-2021-3527) (Gerd Hoffmann) [Orabug: 32842778] {CVE-2021-3527}
usb/redir: avoid dynamic stack allocation (CVE-2021-3527) (Gerd Hoffmann) [Orabug: 32842778] {CVE-2021-3527}
mptsas: Remove unused MPTSASState ‘pending’ field (CVE-2021-3392) (Michael Tokarev) [Orabug: 32470463] {CVE-2021-3392}

OSVersionArchitecturePackageVersionFilename
oracle linux7srcqemu< 4.2.1-11.el7qemu-4.2.1-11.el7.src.rpm
oracle linux7aarch64ivshmem-tools< 4.2.1-11.el7ivshmem-tools-4.2.1-11.el7.aarch64.rpm
oracle linux7aarch64qemu< 4.2.1-11.el7qemu-4.2.1-11.el7.aarch64.rpm
oracle linux7aarch64qemu-block-gluster< 4.2.1-11.el7qemu-block-gluster-4.2.1-11.el7.aarch64.rpm
oracle linux7aarch64qemu-block-iscsi< 4.2.1-11.el7qemu-block-iscsi-4.2.1-11.el7.aarch64.rpm
oracle linux7aarch64qemu-block-rbd< 4.2.1-11.el7qemu-block-rbd-4.2.1-11.el7.aarch64.rpm
oracle linux7aarch64qemu-common< 4.2.1-11.el7qemu-common-4.2.1-11.el7.aarch64.rpm
oracle linux7aarch64qemu-img< 4.2.1-11.el7qemu-img-4.2.1-11.el7.aarch64.rpm
oracle linux7aarch64qemu-kvm< 4.2.1-11.el7qemu-kvm-4.2.1-11.el7.aarch64.rpm
oracle linux7aarch64qemu-kvm-core< 4.2.1-11.el7qemu-kvm-core-4.2.1-11.el7.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	7	src	qemu	< 4.2.1-11.el7	qemu-4.2.1-11.el7.src.rpm
oracle linux	7	aarch64	ivshmem-tools	< 4.2.1-11.el7	ivshmem-tools-4.2.1-11.el7.aarch64.rpm
oracle linux	7	aarch64	qemu	< 4.2.1-11.el7	qemu-4.2.1-11.el7.aarch64.rpm
oracle linux	7	aarch64	qemu-block-gluster	< 4.2.1-11.el7	qemu-block-gluster-4.2.1-11.el7.aarch64.rpm
oracle linux	7	aarch64	qemu-block-iscsi	< 4.2.1-11.el7	qemu-block-iscsi-4.2.1-11.el7.aarch64.rpm
oracle linux	7	aarch64	qemu-block-rbd	< 4.2.1-11.el7	qemu-block-rbd-4.2.1-11.el7.aarch64.rpm
oracle linux	7	aarch64	qemu-common	< 4.2.1-11.el7	qemu-common-4.2.1-11.el7.aarch64.rpm
oracle linux	7	aarch64	qemu-img	< 4.2.1-11.el7	qemu-img-4.2.1-11.el7.aarch64.rpm
oracle linux	7	aarch64	qemu-kvm	< 4.2.1-11.el7	qemu-kvm-4.2.1-11.el7.aarch64.rpm
oracle linux	7	aarch64	qemu-kvm-core	< 4.2.1-11.el7	qemu-kvm-core-4.2.1-11.el7.aarch64.rpm