Oval Definition:	oval:com.redhat.rhsa:def:20204079
Revision Date: 2020-09-30 Version: 638 Title: RHSA-2020:4079: qemu-kvm security update (Important) Description: Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fix(es): QEMU: usb: out-of-bounds r/w access issue while processing usb packets (CVE-2020-14364) QEMU: slirp: use-after-free in ip_reass() function in ip_input.c (CVE-2020-1983) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Family: unix Class: patch Status: Reference(s): CVE-2020-14364 CVE-2020-1983 RHSA-2020:4079 Platform(s): Red Hat Enterprise Linux 7 Product(s): Definition Synopsis Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 7 is installed AND qemu-img is earlier than 10:1.5.3-175.el7_9.1 AND qemu-img is signed with Red Hat redhatrelease2 key qemu-kvm is earlier than 10:1.5.3-175.el7_9.1 AND qemu-kvm is signed with Red Hat redhatrelease2 key qemu-kvm-common is earlier than 10:1.5.3-175.el7_9.1 AND qemu-kvm-common is signed with Red Hat redhatrelease2 key qemu-kvm-tools is earlier than 10:1.5.3-175.el7_9.1 AND qemu-kvm-tools is signed with Red Hat redhatrelease2 key
BACK