Oracle7: ELSA-2022-9978: qemu security Important Security Update (a...
Oracle Linux Security Advisory ELSA-2022-9978

https://linux.oracle.com/errata/ELSA-2022-9978.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

aarch64:
ivshmem-tools-4.2.1-21.el7.aarch64.rpm
qemu-4.2.1-21.el7.aarch64.rpm
qemu-block-gluster-4.2.1-21.el7.aarch64.rpm
qemu-block-iscsi-4.2.1-21.el7.aarch64.rpm
qemu-block-rbd-4.2.1-21.el7.aarch64.rpm
qemu-common-4.2.1-21.el7.aarch64.rpm
qemu-img-4.2.1-21.el7.aarch64.rpm
qemu-kvm-4.2.1-21.el7.aarch64.rpm
qemu-kvm-core-4.2.1-21.el7.aarch64.rpm
qemu-system-aarch64-4.2.1-21.el7.aarch64.rpm
qemu-system-aarch64-core-4.2.1-21.el7.aarch64.rpm


SRPMS:
https://oss.oracle.com/ol7/SRPMS-updates/qemu-4.2.1-21.el7.src.rpm

Related CVEs:

CVE-2022-0216




Description of changes:

[15:4.2.1-21.el7]
- qemu-kvm.spec: Fix the qemu-regdump sos report plugin path (Mark Kanda)  [Orabug: 34680062]
- qmp-regdump: Require python3 on OL8 (Mark Kanda)  [Orabug: 34672256]
- iotests: Adjust 186.out to account for 'null' node-name (Mark Kanda)  [Orabug: 34447388]
- block: Set the name of BlockBackend if possible (Annie Li)  [Orabug: 34447388]
- acpi: Update _DSM method in expected files (Mark Kanda)  [Orabug: 34616322]
- acpi/gpex: Fix cca attribute check for pxb device (Xingang Wang)  [Orabug: 34616322]
- acpi: Enable pxb unit-test for ARM virt machine (Jiahui Cen)  [Orabug: 34616322]
- Kconfig: Compile PXB for ARM_VIRT (Jiahui Cen)  [Orabug: 34616322]
- acpi/gpex: Exclude pxb's resources from PCI0 (Jiahui Cen)  [Orabug: 34616322]
- acpi/gpex: Inform os to keep firmware resource map (Jiahui Cen)  [Orabug: 34616322]
- acpi: Add addr offset in build_crs (Jiahui Cen)  [Orabug: 34616322]
- unit-test: Add testcase for pxb (Yubo Miao)  [Orabug: 34616322]
- acpi: Align the size to 128k (Yubo Miao)  [Orabug: 34616322]
- acpi/gpex: Build tables for pxb (Yubo Miao)  [Orabug: 34616322]
- acpi: Extract crs build form acpi_build.c (Yubo Miao)  [Orabug: 34616322]
- hw/arm/virt: Write extra pci roots into fw_cfg (Jiahui Cen)  [Orabug: 34616322]
- fw_cfg: Refactor extra pci roots addition (Jiahui Cen)  [Orabug: 34616322]
- acpi/gpex: Extract two APIs from acpi_dsdt_add_pci (Yubo Miao)  [Orabug: 34616322]
- arm: use acpi_dsdt_add_gpex (Gerd Hoffmann)  [Orabug: 34616322]
- acpi: add acpi_dsdt_add_gpex (Gerd Hoffmann)  [Orabug: 34616322]
- acpi: Allow DSDT acpi table changes (Jiahui Cen)  [Orabug: 34616322]
- move MemMapEntry (Gerd Hoffmann)  [Orabug: 34616322]
- scsi/lsi53c895a: really fix use-after-free in lsi_do_msgout (CVE-2022-0216) (Mauro Matteo Cascella)  [Orabug: 34353672]  {CVE-2022-0216}
- scsi/lsi53c895a: fix use-after-free in lsi_do_msgout (CVE-2022-0216) (Mauro Matteo Cascella)  [Orabug: 34353672]  {CVE-2022-0216}
- tests/qtest: Add fuzz-lsi53c895a-test (Philippe Mathieu-Daudé)  [Orabug: 34353672]  {CVE-2022-0216}
- hw/scsi/lsi53c895a: Do not abort when DMA requested and no data queued (Philippe Mathieu-Daudé)  [Orabug: 34353672]  {CVE-2022-0216}
- vfio: defer to commit kvm irq routing when enable msi/msix (Longpeng (Mike))  [Orabug: 34419422]
- vfio: simplify the failure path in vfio_msi_enable (Longpeng (Mike))  [Orabug: 34419422]
- vfio: move re-enabling INTX out of the common helper (Longpeng (Mike))  [Orabug: 34419422]
- vfio: simplify the conditional statements in vfio_msi_enable (Longpeng (Mike))  [Orabug: 34419422]
- kvm/msi: do explicit commit when adding msi routes (Longpeng (Mike))  [Orabug: 34419422]
- kvm-irqchip: introduce new API to support route change (Longpeng (Mike))  [Orabug: 34419422]
- event_notifier: handle initialization failure better (Maxim Levitsky)  [Orabug: 34419422]
- qmp-regdump: use QMP command 'query-cpus-fast' (Mark Kanda)  [Orabug: 34510460]


_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle7: ELSA-2022-9978: qemu security Important Security Update (aarch64)

Summary

Description of changes: [15:4.2.1-21.el7] - qemu-kvm.spec: Fix the qemu-regdump sos report plugin path (Mark Kanda) [Orabug: 34680062] - qmp-regdump: Require python3 on OL8 (Mark Kanda) [Orabug: 34672256] - iotests: Adjust 186.out to account for 'null' node-name (Mark Kanda) [Orabug: 34447388] - block: Set the name of BlockBackend if possible (Annie Li) [Orabug: 34447388] - acpi: Update _DSM method in expected files (Mark Kanda) [Orabug: 34616322] - acpi/gpex: Fix cca attribute check for pxb device (Xingang Wang) [Orabug: 34616322] - acpi: Enable pxb unit-test for ARM virt machine (Jiahui Cen) [Orabug: 34616322] - Kconfig: Compile PXB for ARM_VIRT (Jiahui Cen) [Orabug: 34616322] - acpi/gpex: Exclude pxb's resources from PCI0 (Jiahui Cen) [Orabug: 34616322] - acpi/gpex: Inform os to keep firmware resource map (Jiahui Cen) [Orabug: 34616322] - acpi: Add addr offset in build_crs (Jiahui Cen) [Orabug: 34616322] - unit-test: Add testcase for pxb (Yubo Miao) [Orabug: 34616322] - acpi: Align the size to 128k (Yubo Miao) [Orabug: 34616322] - acpi/gpex: Build tables for pxb (Yubo Miao) [Orabug: 34616322] - acpi: Extract crs build form acpi_build.c (Yubo Miao) [Orabug: 34616322] - hw/arm/virt: Write extra pci roots into fw_cfg (Jiahui Cen) [Orabug: 34616322] - fw_cfg: Refactor extra pci roots addition (Jiahui Cen) [Orabug: 34616322] - acpi/gpex: Extract two APIs from acpi_dsdt_add_pci (Yubo Miao) [Orabug: 34616322] - arm: use acpi_dsdt_add_gpex (Gerd Hoffmann) [Orabug: 34616322] - acpi: add acpi_dsdt_add_gpex (Gerd Hoffmann) [Orabug: 34616322] - acpi: Allow DSDT acpi table changes (Jiahui Cen) [Orabug: 34616322] - move MemMapEntry (Gerd Hoffmann) [Orabug: 34616322] - scsi/lsi53c895a: really fix use-after-free in lsi_do_msgout (CVE-2022-0216) (Mauro Matteo Cascella) [Orabug: 34353672] {CVE-2022-0216} - scsi/lsi53c895a: fix use-after-free in lsi_do_msgout (CVE-2022-0216) (Mauro Matteo Cascella) [Orabug: 34353672] {CVE-2022-0216} - tests/qtest: Add fuzz-lsi53c895a-test (Philippe Mathieu-Daudé) [Orabug: 34353672] {CVE-2022-0216} - hw/scsi/lsi53c895a: Do not abort when DMA requested and no data queued (Philippe Mathieu-Daudé) [Orabug: 34353672] {CVE-2022-0216} - vfio: defer to commit kvm irq routing when enable msi/msix (Longpeng (Mike)) [Orabug: 34419422] - vfio: simplify the failure path in vfio_msi_enable (Longpeng (Mike)) [Orabug: 34419422] - vfio: move re-enabling INTX out of the common helper (Longpeng (Mike)) [Orabug: 34419422] - vfio: simplify the conditional statements in vfio_msi_enable (Longpeng (Mike)) [Orabug: 34419422] - kvm/msi: do explicit commit when adding msi routes (Longpeng (Mike)) [Orabug: 34419422] - kvm-irqchip: introduce new API to support route change (Longpeng (Mike)) [Orabug: 34419422] - event_notifier: handle initialization failure better (Maxim Levitsky) [Orabug: 34419422] - qmp-regdump: use QMP command 'query-cpus-fast' (Mark Kanda) [Orabug: 34510460]

i386

x86_64

SRPMS

https://oss.oracle.com/ol7/SRPMS-updates/qemu-4.2.1-21.el7.src.rpm

Severity
Related CVEs: CVE-2022-0216

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.