stable

qemu-7.0.0-12.fc37

FEDORA-2022-22b1f8dae2 created by mcascella 3 months ago for Fedora 37

hcd-xhci: infinite loop in xhci_ring_chain_length (CVE-2020-14394) ati-vga: out-of-bounds write in ati_2d_blt (CVE-2021-3638) acpi erst: memory corruption issues (CVE-2022-4172) qxl: qxl_phys2virt unsafe address translation (CVE-2022-4144)

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2022-22b1f8dae2

This update has been submitted for testing by mcascella.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'passed'.

3 months ago

This update has been pushed to testing.

3 months ago

This update's test gating status has been changed to 'failed'.

3 months ago

This update's test gating status has been changed to 'passed'.

3 months ago
User Icon frantisekz commented & provided feedback 3 months ago
karma

Didn't spot any issues

User Icon nathan95 commented & provided feedback 3 months ago
karma

Works for me

This update can be pushed to stable now if the maintainer wishes

3 months ago
User Icon besser82 commented & provided feedback 3 months ago
karma

Works great! LGTM! =)

This update has been submitted for stable by bodhi.

3 months ago

This update has been pushed to stable.

3 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
3 months ago
in testing
3 months ago
in stable
3 months ago
BZ#1908050 CVE-2020-14394 qemu: infinite loop in xhci_ring_chain_length() in hw/usb/hcd-xhci.c [fedora-all]
0
0
BZ#1979882 CVE-2021-3638 qemu: ati-vga: inconsistent check in ati_2d_blt() may lead to out-of-bounds write [fedora-all]
0
0
BZ#2148542 CVE-2022-4144 qemu: QXL: qxl_phys2virt unsafe address translation can lead to out-of-bounds read [fedora-all]
0
0
BZ#2149106 CVE-2022-4172 qemu: ACPI ERST: memory corruption issues in read_erst_record and write_erst_record [fedora-all]
0
0

Automated Test Results

passed