Synopsis: Moderate: qemu-kvm security and bug fix update
Advisory ID: SLSA-2017:0621-1
Issue Date: 2017-03-21
CVE Numbers: CVE-2016-3712
—
Security Fix(es):
* An integer overflow flaw and an out-of-bounds read flaw were found in
the way QEMU’s VGA emulator set certain VGA registers while in VBE mode. A
privileged guest user could use this flaw to crash the QEMU process
instance. (CVE-2016-3712)
—
SL6
x86_64
qemu-guest-agent-0.12.1.2-2.503.el6.x86_64.rpm
qemu-img-0.12.1.2-2.503.el6.x86_64.rpm
qemu-kvm-0.12.1.2-2.503.el6.x86_64.rpm
qemu-kvm-debuginfo-0.12.1.2-2.503.el6.x86_64.rpm
qemu-kvm-tools-0.12.1.2-2.503.el6.x86_64.rpm
i386
qemu-guest-agent-0.12.1.2-2.503.el6.i686.rpm
qemu-kvm-debuginfo-0.12.1.2-2.503.el6.i686.rpm
– Scientific Linux Development Team
