Synopsis: Important: qemu-kvm security and bug fix update
Advisory ID: SLSA-2017:1430-1
Issue Date: 2017-06-13
CVE Numbers: CVE-2017-7718
CVE-2017-7980
—
Security Fix(es):
* An out-of-bounds r/w access issue was found in QEMU’s Cirrus CLGD 54xx
VGA Emulator support. The vulnerability could occur while copying VGA data
via various bitblt functions. A privileged user inside a guest could use
this flaw to crash the QEMU process or, potentially, execute arbitrary
code on the host with privileges of the QEMU process. (CVE-2017-7980)
* An out-of-bounds access issue was found in QEMU’s Cirrus CLGD 54xx VGA
Emulator support. The vulnerability could occur while copying VGA data
using bitblt functions (for example, cirrus_bitblt_rop_fwd_transp_). A
privileged user inside a guest could use this flaw to crash the QEMU
process, resulting in denial of service. (CVE-2017-7718)
Bug Fix(es):
* Previously, guest virtual machines in some cases became unresponsive
when the “pty” back end of a serial device performed an irregular I/O
communication. This update improves the handling of serial I/O on guests,
which prevents the described problem from occurring.
—
SL7
x86_64
qemu-img-1.5.3-126.el7_3.9.x86_64.rpm
qemu-kvm-1.5.3-126.el7_3.9.x86_64.rpm
qemu-kvm-common-1.5.3-126.el7_3.9.x86_64.rpm
qemu-kvm-debuginfo-1.5.3-126.el7_3.9.x86_64.rpm
qemu-kvm-tools-1.5.3-126.el7_3.9.x86_64.rpm
– Scientific Linux Development Team
