Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 503
Alerts This Week
Warning Icon 1 503

Critical Network Security Update for KVM on Scientific Linux: 2013-03-07

Scientific Large Esm H446
Important: kvm security update
Date: Thu, 7 Mar 2013 16:17:25 -0600
Reply-To: Pat Riehecky 
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Important: kvm on SL5.x x86_64
MIME-Version: 1.0

Synopsis: Important: kvm security update
Issue Date: 2013-03-07
CVE Numbers: CVE-2012-6075
--

A flaw was found in the way QEMU-KVM emulated the e1000 network interface
card when the host was configured to accept jumbo network frames, and a
guest using the e1000 emulated driver was not. A remote attacker could use
this flaw to crash the guest or, potentially, execute arbitrary code with
root privileges in the guest. (CVE-2012-6075)

Note that the procedure in the Solution section must be performed before
this update will take effect.
--

SL5
 x86_64
 kmod-kvm-83-262.el5_9.1.x86_64.rpm
 kmod-kvm-debug-83-262.el5_9.1.x86_64.rpm
 kvm-83-262.el5_9.1.x86_64.rpm
 kvm-debuginfo-83-262.el5_9.1.x86_64.rpm
 kvm-qemu-img-83-262.el5_9.1.x86_64.rpm
 kvm-tools-83-262.el5_9.1.x86_64.rpm

- Scientific Linux Development Team