(RHSA-2018:2887) Important: qemu-kvm-rhev security update

2018-10-09T14:53:35
ID RHSA-2018:2887
Type redhat
Reporter RedHat
Modified 2018-10-09T14:55:27

Description

KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.

Security Fix(es):

  • QEMU: slirp: heap buffer overflow while reassembling fragmented datagrams (CVE-2018-11806)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Red Hat would like to thank Jskz - Zero Day Initiative (trendmicro.com) for reporting this issue.