Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Oracle Linux 7 ELSA-2023-12065 Critical: Qemu Security Patch

oracle
Calendar Grey January 24, 2023
Oracle Linux Logo Esm H88
Crucial Oracle Linux 7 security patch ELSA-2023-12075 addresses multiple severe vulnerabilities in the qemu software suite.
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[15:4.2.1-24.el7] - Revert "virtio-scsi: Send "REPORTED LUNS CHANGED" sense data upon disk hotplug events" (Mark Kanda) [Orabug: 34905939] [15:4.2.1-23.el7] - hw/display/ati_2d: Fix buffer overflow in ati_2d_blt (CVE-2021-3638) (Philippe Mathieu-Daudé) [Orabug: 33930374] {CVE-2021-3638} - tests/acpi: virt: update ACPI MADT and FADT binaries (Miguel Luis) - acpi: arm/virt: madt: bump to revision 4 accordingly to ACPI 6.0 Errata A (Miguel Luis) - acpi: arm/virt: madt: use build_append_int_noprefix() API to compose MADT table (Igor Mammedov) - acpi: madt: arm/x86: use acpi_table_begin()/acpi_table_end() instead of build_header() (Igor Mammedov) - hw/arm/virt-acpi-build:Remove dead assignment in build_madt() (Chen Qun) - acpi: build_fadt: adapt FADT table names (Miguel Luis) - acpi: fadt: support revision 6.0 of the ACPI specification (Miguel Luis) - tests/acpi: virt: allow acpi MADT and FADT changes (Miguel Luis) - Document CVE-2022-1050 and CVE-2022-3165 (Mark Kanda) [Orabug:...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory security issue patches important update Oracle Linux qemu aarch64

SRPMs

https://oss.oracle.com:443/ol7/SRPMS-updates//qemu-4.2.1-24.el7.src.rpm

x86_64

aarch64

ivshmem-tools-4.2.1-24.el7.aarch64.rpm qemu-4.2.1-24.el7.aarch64.rpm qemu-block-gluster-4.2.1-24.el7.aarch64.rpm qemu-block-iscsi-4.2.1-24.el7.aarch64.rpm qemu-block-rbd-4.2.1-24.el7.aarch64.rpm qemu-common-4.2.1-24.el7.aarch64.rpm qemu-img-4.2.1-24.el7.aarch64.rpm qemu-kvm-4.2.1-24.el7.aarch64.rpm qemu-kvm-core-4.2.1-24.el7.aarch64.rpm qemu-system-aarch64-4.2.1-24.el7.aarch64.rpm qemu-system-aarch64-core-4.2.1-24.el7.aarch64.rpm

Severity
critical
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2022-3165 CVE-2022-1050 CVE-2021-3638 CVE-2022-4172

Topics%20covered

Topics Covered

security advisory security issue patches important update Oracle Linux qemu aarch64

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here