FEDORA-2015-12657 created by myoung 4 years ago for Fedora 22
stable

QEMU heap overflow flaw while processing certain ATAPI commands. [XSA-138, CVE-2015-5154] (#1247142) try again to fix xen-qemu-dom0-disk-backend.service (#1242246) correct qemu location in xen-qemu-dom0-disk-backend.service (#1242246), rebuild efi grub.cfg if it is present (#1239309), re-enable remus by building with libnl3, modify gnutls use in line with Fedora's crypto policies (#1179352)

How to install

sudo dnf upgrade --advisory=FEDORA-2015-12657

This update has been submitted for testing by myoung.

4 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/113106/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/113106/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 testing updates repository.

4 years ago

This update has been pushed to testing

4 years ago
User Icon lantw44 commented & provided feedback 4 years ago
karma

xen-qemu-dom0-disk-backend.service works fine now.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

4 years ago
User Icon cserpentis commented & provided feedback 4 years ago
karma

seems allright

This update has been submitted for stable by myoung.

4 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/115320/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 stable updates repository.

4 years ago

This update has been pushed to stable

4 years ago
User Icon anonymous commented & provided feedback 4 years ago

This doesn't fix xen grub entries for me - although on a non EFI system. No entries for xen are created

BZ#1239309 xen package does not create new entry in /boot/efi/EFI/fedora/grub.cfg

Please login to add feedback.

Metadata
Type
security
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
BZ#1179352 Utilize system-wide crypto-policies
0
0
BZ#1239309 xen package does not create new entry in /boot/efi/EFI/fedora/grub.cfg
-1
0
BZ#1242246 xen-qemu-dom0-disk-backend.service trys to run a non-existent executable
0
0
BZ#1243563 CVE-2015-5154 qemu: ide: atapi: heap overflow during I/O buffer memory access
0
0
BZ#1247142 CVE-2015-5154 xen: qemu: ide: atapi: heap overflow during I/O buffer memory access [fedora-all]
0
0

Automated Test Results