(RHSA-2016:2706) Moderate: qemu-kvm-rhev security, bug fix, and enhancement update

2016-11-1418:13:59

access.redhat.com

0.001 Low

EPSS

Percentile

28.2%

JSON

KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm-rhev package provides the user-space component for running virtual machines using KVM in environments managed by Red Hat Enterprise Virtualization Manager.

The following packages have been upgraded to a newer upstream version: qemu-kvm-rhev (2.6.0). (BZ#1386377)

Security Fix(es):

An out-of-bounds flaw was found in the QEMU emulator built using ‘address_space_translate’ to map an address to a MemoryRegionSection. The flaw could occur while doing pci_dma_read/write calls, resulting in an out-of-bounds read-write access error. A privileged user inside a guest could use this flaw to crash the guest instance (denial of service). (CVE-2015-8817, CVE-2015-8818)

Red Hat would like to thank Donghai Zdh of Alibaba Inc. for reporting this issue.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64qemu-img-rhev< 2.6.0-27.el7qemu-img-rhev-2.6.0-27.el7.x86_64.rpm
RedHat7x86_64qemu-kvm-rhev< 2.6.0-27.el7qemu-kvm-rhev-2.6.0-27.el7.x86_64.rpm
RedHat7x86_64qemu-kvm-rhev-debuginfo< 2.6.0-27.el7qemu-kvm-rhev-debuginfo-2.6.0-27.el7.x86_64.rpm
RedHat7x86_64qemu-kvm-tools-rhev< 2.6.0-27.el7qemu-kvm-tools-rhev-2.6.0-27.el7.x86_64.rpm
RedHat7x86_64qemu-kvm-common-rhev< 2.6.0-27.el7qemu-kvm-common-rhev-2.6.0-27.el7.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	x86_64	qemu-img-rhev	< 2.6.0-27.el7	qemu-img-rhev-2.6.0-27.el7.x86_64.rpm
RedHat	7	x86_64	qemu-kvm-rhev	< 2.6.0-27.el7	qemu-kvm-rhev-2.6.0-27.el7.x86_64.rpm
RedHat	7	x86_64	qemu-kvm-rhev-debuginfo	< 2.6.0-27.el7	qemu-kvm-rhev-debuginfo-2.6.0-27.el7.x86_64.rpm
RedHat	7	x86_64	qemu-kvm-tools-rhev	< 2.6.0-27.el7	qemu-kvm-tools-rhev-2.6.0-27.el7.x86_64.rpm
RedHat	7	x86_64	qemu-kvm-common-rhev	< 2.6.0-27.el7	qemu-kvm-common-rhev-2.6.0-27.el7.x86_64.rpm