FEDORA-2017-908f063bb6

security update in Fedora 27 for xen

Status: stable 2 years ago

Qemu: usb: ohci: infinite loop due to incorrect return value [CVE-2017-9330] (#1457698) Qemu: nbd: segmentation fault due to client non-negotiation [CVE-2017-9524] (#1460173) Qemu: qemu-nbd: server breaks with SIGPIPE upon client abort [CVE-2017-10664] (#1466466) Qemu: exec: oob access during dma operation [CVE-2017-11334] (#1471640) revised full fix for XSA-226 (regressed 32-bit Dom0 or backend domains)

Comments 7

This update has been submitted for testing by myoung.

This update has been pushed to testing.

Works

karma: +1

works fine

karma: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Related Bugs 8

00 #1457697 CVE-2017-9330 Qemu: usb: ohci: infinite loop due to incorrect return value
00 #1457698 CVE-2017-9330 xen: Qemu: usb: ohci: infinite loop due to incorrect return value [fedora-all]
00 #1460170 CVE-2017-9524 Qemu: nbd: segmentation fault due to client non-negotiation
00 #1460173 CVE-2017-9524 xen: Qemu: nbd: segmentation fault due to client non-negotiation [fedora-all]
00 #1466190 CVE-2017-10664 Qemu: qemu-nbd: server breaks with SIGPIPE upon client abort
00 #1466466 CVE-2017-10664 xen: Qemu: qemu-nbd: server breaks with SIGPIPE upon client abort [fedora-all]
00 #1471638 CVE-2017-11334 Qemu: exec: oob access during dma operation
00 #1471640 CVE-2017-11334 xen: Qemu: exec: oob access during dma operation [fedora-all]

Automated Test Results