stable

qemu-2.7.1-7.fc25

FEDORA-2017-f941184db1 created by crobinso 7 years ago for Fedora 25
  • CVE-2017-7718: cirrus: OOB read access issue (bz #1443443)
  • CVE-2016-9603: cirrus: heap buffer overflow via vnc connection (bz #1432040)
  • CVE-2017-7377: 9pfs: fix file descriptor leak (bz #1437872)
  • CVE-2017-7980: cirrus: OOB r/w access issues in bitblt (bz #1444372)
  • CVE-2017-8112: vmw_pvscsi: infinite loop in pvscsi_log2 (bz #1445622)
  • CVE-2017-8309: audio: host memory lekage via capture buffer (bz #1446520)
  • CVE-2017-8379: input: host memory lekage via keyboard events (bz #1446560)
  • CVE-2017-8380: scsi: megasas: out-of-bounds read in megasas_mmio_write (bz #1446578)
  • CVE-2017-9060: virtio-gpu: host memory leakage in Virtio GPU device (bz #1452598)
  • CVE-2017-9310: net: infinite loop in e1000e NIC emulation (bz #1452623)
  • CVE-2017-9330: usb: ohci: infinite loop due to incorrect return value (bz #1457699)
  • CVE-2017-9374: usb: ehci host memory leakage during hotunplug (bz #1459137)
  • CVE-2017-10806: usb-redirect: stack buffer overflow in debug logging (bz #1468497)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2017-f941184db1

This update has been submitted for testing by crobinso.

7 years ago

This update has been pushed to testing.

7 years ago
User Icon dhgutteridge commented & provided feedback 7 years ago
karma

No regressions noted.

User Icon cserpentis commented & provided feedback 7 years ago
karma

works for me in a VM

User Icon wolnei commented & provided feedback 7 years ago
karma

No regressions.

User Icon filiperosset commented & provided feedback 7 years ago
karma

no regressions noted

User Icon pwalter commented & provided feedback 7 years ago
karma

Works

User Icon bowlofeggs commented & provided feedback 7 years ago
karma

I tested this on my development system with vagrant-libvirt and the things I do seem to work well.

This update has been submitted for stable by crobinso.

7 years ago

This update has been pushed to stable.

7 years ago

Please login to add feedback.

Metadata
Type
security
Karma
6
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
7 years ago
Builds
1
qemu-2.7.1-7.fc25
BZ#1430056 CVE-2016-9603 Qemu: cirrus: heap buffer overflow via vnc connection
0
0
BZ#1432040 CVE-2016-9603 Qemu: cirrus: heap buffer overflow via vnc connection [fedora-all]
0
0
BZ#1437871 CVE-2017-7377 Qemu: 9pfs: host memory leakage via v9fs_create
0
0
BZ#1437872 CVE-2017-7377 Qemu: 9pfs: host memory leakage via v9fs_create [fedora-all]
0
0
BZ#1443441 CVE-2017-7718 Qemu: display: cirrus: OOB read access issue
0
0
BZ#1443443 CVE-2017-7718 Qemu: display: cirrus: OOB read access issue [fedora-all]
0
0
BZ#1444371 CVE-2017-7980 Qemu: display: cirrus: OOB r/w access issues in bitblt routines
0
0
BZ#1444372 CVE-2017-7980 Qemu: display: cirrus: OOB r/w access issues in bitblt routines [fedora-all]
0
0
BZ#1445621 CVE-2017-8112 Qemu: scsi: vmw_pvscsi: infinite loop in pvscsi_log2
0
0
BZ#1445622 CVE-2017-8112 Qemu: scsi: vmw_pvscsi: infinite loop in pvscsi_log2 [fedora-all]
0
0
BZ#1446517 CVE-2017-8309 Qemu: audio: host memory leakage via capture buffer
0
0
BZ#1446520 CVE-2017-8309 Qemu: audio: host memory lekage via capture buffer [fedora-all]
0
0
BZ#1446547 CVE-2017-8379 Qemu: input: host memory lekage via keyboard events
0
0
BZ#1446560 CVE-2017-8379 Qemu: input: host memory lekage via keyboard events [fedora-all]
0
0
BZ#1446577 CVE-2017-8380 Qemu: scsi: megasas: out-of-bounds read in megasas_mmio_write
0
0
BZ#1446578 CVE-2017-8380 Qemu: scsi: megasas: out-of-bounds read in megasas_mmio_write [fedora-all]
0
0
BZ#1452597 CVE-2017-9060 Qemu: virtio-gpu: host memory leakage in Virtio GPU device
0
0
BZ#1452598 CVE-2017-9060 Qemu: virtio-gpu: host memory leakage in Virtio GPU device [fedora-all]
0
0
BZ#1452620 CVE-2017-9310 Qemu: net: infinite loop in e1000e NIC emulation
0
0
BZ#1452623 CVE-2017-9310 Qemu: net: infinite loop in e1000e NIC emulation [fedora-all]
0
0
BZ#1457697 CVE-2017-9330 Qemu: usb: ohci: infinite loop due to incorrect return value
0
0
BZ#1457699 CVE-2017-9330 Qemu: usb: ohci: infinite loop due to incorrect return value [fedora-all]
0
0
BZ#1459132 CVE-2017-9374 Qemu: usb: ehci host memory leakage during hotunplug
0
0
BZ#1459137 CVE-2017-9374 Qemu: usb: ehci host memory leakage during hotunplug [fedora-all]
0
0
BZ#1468496 CVE-2017-10806 Qemu: usb-redirect: stack buffer overflow in debug logging
0
0
BZ#1468497 CVE-2017-10806 Qemu: usb-redirect: stack buffer overflow in debug logging [fedora-all]
0
0
qemu-2.7.1-7.fc25

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 8.3.0 on bodhi-web-177-vx5cm.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy