Oval Definition:	oval:org.mitre.oval:def:22055
Revision Date: 2014-02-24 Version: 30 Title: RHSA-2011:0919: qemu-kvm security and bug fix update (Important) Description: The virtio_queue_notify in qemu-kvm 0.14.0 and earlier does not properly validate the virtqueue number, which allows guest users to cause a denial of service (guest crash) and possibly execute arbitrary code via a negative number in the Queue Notify field of the Virtio Header, which bypasses a signed comparison. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2011-2212 CVE-2011-2512 RHSA-2011:0919-01 Platform(s): Red Hat Enterprise Linux 6 Product(s): qemu-kvm Definition Synopsis The operating system installed on the system is Red Hat Enterprise Linux 6 AND Packages section qemu-kvm is earlier than 2:0.12.1.2-2.160.el6_1.2 OR qemu-img is earlier than 2:0.12.1.2-2.160.el6_1.2 OR qemu-kvm-tools is earlier than 2:0.12.1.2-2.160.el6_1.2
BACK