RedHatRHSA-2015:1925(RHSA-2015:1925) Important: kvm security update
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
39.4%
KVM (Kernel-based Virtual Machine) is a full virtualization solution for
Linux on AMD64 and Intel 64 systems.
A heap buffer overflow flaw was found in the way QEMU’s NE2000 NIC
emulation implementation handled certain packets received over the network.
A privileged user inside a guest could use this flaw to crash the QEMU
instance (denial of service) or potentially execute arbitrary code on
the host. (CVE-2015-5279)
Red Hat would like to thank Qinghao Tang of QIHU 360 Inc. for reporting
this issue.
All kvm users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. Note: The procedure in
the Solution section must be performed before this update will take effect.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | x86_64 | kvm-debuginfo | < 83-274.el5_11 | kvm-debuginfo-83-274.el5_11.x86_64.rpm |
| RedHat | 5 | x86_64 | kvm-qemu-img | < 83-274.el5_11 | kvm-qemu-img-83-274.el5_11.x86_64.rpm |
| RedHat | 5 | x86_64 | kmod-kvm-debug | < 83-274.el5_11 | kmod-kvm-debug-83-274.el5_11.x86_64.rpm |
| RedHat | 5 | x86_64 | kvm-tools | < 83-274.el5_11 | kvm-tools-83-274.el5_11.x86_64.rpm |
| RedHat | 5 | x86_64 | kmod-kvm | < 83-274.el5_11 | kmod-kvm-83-274.el5_11.x86_64.rpm |
| RedHat | 5 | src | kvm | < 83-274.el5_11 | kvm-83-274.el5_11.src.rpm |
| RedHat | 5 | x86_64 | kvm | < 83-274.el5_11 | kvm-83-274.el5_11.x86_64.rpm |
Related
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
39.4%