stable

xen-4.5.2-9.fc22

FEDORA-2016-38b20aa50f created by myoung 8 years ago for Fedora 22

Qemu: nvram: OOB r/w access in processing firmware configurations CVE-2016-1714 (#1296080)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2016-38b20aa50f

This update has been submitted for testing by myoung.

8 years ago

This update has been pushed to testing.

8 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

8 years ago

This update has been submitted for stable by myoung.

8 years ago

This update has been pushed to stable.

8 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
8 years ago
in testing
8 years ago
in stable
8 years ago
BZ#1283934 CVE-2016-1922 Qemu: i386: null pointer dereference in vapic_write()
0
0
BZ#1284008 CVE-2015-8613 Qemu: scsi: stack based buffer overflow in megasas_ctrl_get_info
0
0
BZ#1292767 CVE-2016-1922 xen: qemu: Null pointer dereference in vapic_write() [fedora-all]
0
0
BZ#1293305 CVE-2015-8613 xen: qemu: Stack-based buffer overflow in megasas_ctrl_get_info [fedora-all]
0
0
BZ#1296060 CVE-2016-1714 Qemu: nvram: OOB r/w access in processing firmware configurations
0
0
BZ#1296080 CVE-2016-1714 xen: Qemu: nvram: OOB r/w access in processing firmware configurations [fedora-all]
0
0
BZ#1296567 CVE-2016-2857 Qemu: net: out of bounds read in net_checksum_calculate()
0
0
BZ#1298570 CVE-2016-1981 Qemu: net: e1000 infinite loop in start_xmit and e1000_receive_iov routines
0
0
BZ#1299455 Qemu: usb ehci out-of-bounds read in ehci_process_itd
0
0
BZ#1299996 CVE-2016-1981 xen: qemu-kvm: Infinite loop and out-of-bounds transfer start in start_xmit() and e1000_receive_iov() [fedora-all]
0
0
BZ#1300235 xen: qemu: Out-of-bounds read in usb-echi [fedora-all]
0
0
BZ#1300771 CVE-2015-8817 CVE-2015-8818 Qemu: OOB access in address_space_rw leads to segmentation fault
0
0
BZ#1301643 CVE-2016-2198 Qemu: usb: ehci null pointer dereference in ehci_caps_write
0
0
BZ#1302299 CVE-2016-2392 Qemu: usb: null pointer dereference in remote NDIS control message handling
0
0
BZ#1303106 CVE-2016-2841 Qemu: net: ne2000: infinite loop in ne2000_receive
0
0
BZ#1303120 CVE-2016-2538 Qemu: usb: integer overflow in remote NDIS control message handling
0
0
BZ#1303135 CVE-2016-2198 xen: Qemu: usb: ehci null pointer dereference in ehci_caps_write [fedora-all]
0
0
BZ#1304048 xen: Qemu: net: ne2000: infinite loop in ne2000_receive [fedora-all]
0
0
BZ#1304794 CVE-2016-2391 Qemu: usb: multiple eof_timers in ohci module leads to null pointer dereference
0
0
BZ#1305816 CVE-2016-2538 xen: qemu: Integer overflow in usb module causing memory leak and DoS [fedora-all]
0
0
BZ#1307116 CVE-2016-2392 xen: qemu: Null pointer dereference in usb module [fedora-all]
0
0
BZ#1308882 CVE-2016-2391 xen: qemu: Holding multiple eof_timers at the same time in ohci usb mode leads to SIGSEGV [fedora-all]
0
0
BZ#1309565 xen: qemu: Out-of-bounds read in net_checksum_calculate() [fedora-all]
0
0
BZ#1313273 xen: qemu: Segmentation fault in address_space_rw [fedora-all]
0
0
BZ#1314676 CVE-2016-2858 Qemu: rng-random: arbitrary stack based allocation leading to corruption
0
0
BZ#1314678 xen: Qemu: rng-random: arbitrary stack based allocation leading to corruption [fedora-all]
0
0

Automated Test Results