FEDORA-2019-0664c7724d

security update in Fedora 30 for qemu

Status: stable 5 months ago
  • fix crash with virgl enabled (bz #1692323)
  • linux-user: make pwrite64/pread64(fd, NULL, 0, offset) return 0 (bz #1174267)
  • Fix build with latest gluster (bz #1684298)
  • CVE-2018-20123: pvrdma: memory leakage in device hotplug (bz #1658964)
  • CVE-2018-16872: usb-mtp: path traversal issue (bz #1659150)
  • CVE-2018-20191: pvrdma: uar_read leads to NULL deref (bz #1660315)
  • CVE-2019-6501: scsi-generic: possible OOB access (bz #1669005)
  • CVE-2019-6778: slirp: heap buffer overflow (bz #1669072)
  • CVE-2019-3812: Out-of-bounds read in hw/i2c/i2c-ddc.c allows for memory disclosure (bz #1678081)

Comments 15

This update has been submitted for testing by crobinso.

This update has been pushed to testing.

I don't see the qemu-block-rbd error while running dnf system-upgrade in #1688117 now that 3.1.0-5.fc30 is in updates-testing. Thanks.

works for me in a VM

karma: +1

Works just fine

karma: +1

adamwill edited this update.

New build(s):

  • qemu-3.1.0-6.fc30

Removed build(s):

  • qemu-3.1.0-5.fc30

Karma has been reset.

This update has been submitted for testing by adamwill.

Tested with Beta-1.8. After installing direct from the Workstation live image and not installing any updates, I can successfully run a Boxes VM booting from the same image just fine. Looks good to me.

karma: +1 critpath: +1

This update has been pushed to testing.

Works fine, I didn't spot any issues.

karma: +1 critpath: +1 #1692323: +1

virgl now works even on Nvidia in virt-manager, but crashing virt-manager itself when running some Linux machines in VM. :)

karma: +1 critpath: +1

This update has been submitted for batched by adamwill.

This update has been submitted for stable by adamwill.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
high
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Disabled
Autopush (time)
Disabled
Dates
submitted 5 months ago
in testing 5 months ago
in stable 5 months ago
modified 5 months ago

Related Bugs 14

00 #1174267 qemu linux-user syscall pwrite64 does not handle the case when the length of buffer is = 0
00 #1656114 CVE-2018-16872 QEMU: usb-mtp: path traversal by host filesystem manipulation in Media Transfer Protocol (MTP)
00 #1658963 CVE-2018-20123 QEMU: pvrdma: memory leakage in device hotplug
00 #1658964 CVE-2018-20123 qemu: pvrdma: memory leakage in device hotplug [fedora-all]
00 #1659150 CVE-2018-16872 qemu: path traversal by host filesystem manipulation in Media Transfer Protocol (MTP) [fedora-all]
00 #1660314 CVE-2018-20191 QEMU: pvrdma: uar_read leads to NULL dereference
00 #1660315 CVE-2018-20191 qemu: pvrdma: uar_read leads to NULL dereference [fedora-all]
00 #1664205 CVE-2019-6778 QEMU: slirp: heap buffer overflow in tcp_emu()
00 #1665792 CVE-2019-3812 qemu: Out-of-bounds read in hw/i2c/i2c-ddc.c allows for memory disclosure
00 #1668160 CVE-2019-6501 QEMU: scsi-generic: possible OOB access while handling inquiry request
00 #1669005 CVE-2019-6501 qemu: scsi-generic: possible OOB access while handling inquiry request [fedora-all]
00 #1669072 CVE-2019-6778 qemu: slirp: heap buffer overflow in tcp_emu() [fedora-all]
00 #1678081 CVE-2019-3812 qemu: Out-of-bounds read in hw/i2c/i2c-ddc.c allows for memory disclosure [fedora-all]
0+1 #1692323 qemu crashes with virgl enabled on some GPUs

Automated Test Results