Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 448
Alerts This Week
Warning Icon 1 448

Fedora 23 QEMU Critical Advisory: CVE-2015-7295 Remote DoS Fix

fedora
Calendar Grey October 11, 2015
Dist Fedora Esm H88
The new Fedora 23 patch addresses external denial-of-service vulnerabilities in qemu and fixes coroutine reentrancy issues. Get the update via yum package manager
* Rebased to version 2.4.0.1 * CVE-2015-7295: virtio-net possible remote DoS (bz #1264393) * drive-mirror: Fix coroutine reentrance (bz #1266936)

Summary

QEMU is a generic and open source processor emulator which achieves a good

emulation speed by using dynamic translation. QEMU has two operating modes:

* Full system emulation. In this mode, QEMU emulates a full system (for

example a PC), including a processor and various peripherials. It can be

used to launch different Operating Systems without rebooting the PC or

to debug system code.

* User mode emulation. In this mode, QEMU can launch Linux processes compiled

for one CPU on another CPU.

As QEMU requires no host kernel patches to run, it is safe and easy to use.

Update Information:

* Rebased to version 2.4.0.1 * CVE-2015-7295: virtio-net possible remote DoS (bz #1264393) * drive-mirror: Fix coroutine reentrance (bz #1266936)

Change Log

References


[ 1 ] Bug #1264381 - CVE-2015-7295 Qemu: net: virtio-net possible remote DoS https://bugzilla.redhat.com/show_bug.cgi?id=1264381

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update qemu' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: qemu
Product: Fedora 23
Version: 2.4.0.1
Release: 1.fc23
Summary: QEMU is a FAST! processor emulator

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.