FEDORA-2016-f13ea849c5

security update in Fedora 24 for qemu

Status: stable 3 years ago
  • CVE-2016-4020: memory leak in kvmvapic.c (bz #1326904)
  • CVE-2016-4439: scsi: esb: OOB write #1 (bz #1337503)
  • CVE-2016-4441: scsi: esb: OOB write #2 (bz #1337506)
  • Fix regression installing windows 7 with qxl/vga (bz #1339267)
  • Fix crash with aarch64 gic-version=host and accel=tcg (bz #1339977)

How to install

sudo dnf upgrade --advisory=FEDORA-2016-f13ea849c5

Comments 8

This update has been submitted for testing by crobinso.

This update has been pushed to testing.

This update has been pushed to testing.

Works great! LGTM! =)

karma: +1

works great

karma: +1

This update has been submitted for stable by bodhi.

works for me

karma: +1

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago

Related Bugs 6

00 #1313686 CVE-2016-4020 Qemu: i386: leakage of stack memory to guest in kvmvapic.c
00 #1326904 CVE-2016-4020 qemu: qemu-kvm: Leakage of stack memory to guest in kvmvapic.c [fedora-all]
00 #1337502 CVE-2016-4439 Qemu: scsi: esp: OOB write while writing to 's->cmdbuf' in esp_reg_write
00 #1337503 CVE-2016-4439 Qemu: scsi: esp: OOB write while writing to 's->cmdbuf' in esp_reg_write [fedora-all]
00 #1337505 CVE-2016-4441 Qemu: scsi: esp: OOB write while writing to 's->cmdbuf' in get_cmd
00 #1337506 CVE-2016-4441 Qemu: scsi: esp: OOB write while writing to 's-cmdbuf' in get_cmd [fedora-all]

Automated Test Results