Oval Definition:oval:org.opensuse.security:def:78145
Revision Date:2015-05-12Version:1
Title:Security update for qemu (Important)
Description:



qemu / kvm was updated to fix a security issue and some bugs.

Security issue fixed:

CVE-2015-3456: Fixed a buffer overflow in the floppy drive emulation, which could be used to denial of service attacks or potential code execution against the host.

CVE-2015-1779: Fixed insufficient resource limiting in the VNC websockets decoder.



Bugs fixed: - qemu truncates vhd images in virt-rescue (bsc#886378)

- Update kvm-supported.txt with the current rbd support status.

- enable rbd build on x86_64 (qemu-block-rbd package) (FATE#318349)
Family:unixClass:patch
Status:Reference(s):886378
924018
929339
CVE-2015-1779
CVE-2015-3456
SUSE-SU-2015:0896-1
Platform(s):SUSE Linux Enterprise Desktop 12
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • qemu-2.0.2-46.1 is installed
  • OR qemu-block-curl-2.0.2-46.1 is installed
  • OR qemu-ipxe-1.0.0-46.1 is installed
  • OR qemu-kvm-2.0.2-46.1 is installed
  • OR qemu-seabios-1.7.4-46.1 is installed
  • OR qemu-sgabios-8-46.1 is installed
  • OR qemu-tools-2.0.2-46.1 is installed
  • OR qemu-vgabios-1.7.4-46.1 is installed
  • OR qemu-x86-2.0.2-46.1 is installed
    • BACK