Security update for qemu (important)

ID SUSE-SU-2016:0459-1
Type suse
Reporter Suse
Modified 2016-02-15T19:11:21


This update fixes the following security issues:

  • Enforce receive packet size, thus eliminating buffer overflow and potential security issue. (bsc#957162 CVE-2015-7512)
  • Infinite loop in processing command block list. CVE-2015-8345 (bsc#956829):

This update also fixes a non-security bug: - Due to space restrictions in limited bios data areas, don't create mptable if vcpu count is "high" (ie more than ~19). (bsc#954864) (No supported guests are negatively impacted by this change, which is taken from upstream seabios)