Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Scientific Linux: CVE-2013-0241 Moderate: xorg-x11-drv-qxl Crash Risk

Scientific Large Esm H446
Moderate: xorg-x11-drv-qxl security update
Date: Fri, 1 Feb 2013 09:47:25 -0600
Reply-To: Pat Riehecky 
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Organization: Fermilab
Subject: Security ERRATA Moderate: xorg-x11-drv-qxl on SL6.x i386/x86_64
MIME-Version: 1.0

Synopsis: Moderate: xorg-x11-drv-qxl security update
Issue Date: 2013-01-31
CVE Numbers: CVE-2013-0241
--

A flaw was found in the way the host's qemu-kvm qxl driver and the guest's
X.Org qxl driver interacted when a SPICE connection terminated. A user
able to
initiate a SPICE connection to a guest could use this flaw to make the guest
temporarily unavailable or, potentially (if the sysctl
kernel.softlockup_panic
variable was set to "1" in the guest), crash the guest. (CVE-2013-0241)

All running X.Org server instances using the qxl driver must be
restarted for
this update to take effect.
--

SL6
 x86_64
 xorg-x11-drv-qxl-0.0.14-14.el6_3.x86_64.rpm
 xorg-x11-drv-qxl-debuginfo-0.0.14-14.el6_3.x86_64.rpm
 i386
 xorg-x11-drv-qxl-0.0.14-14.el6_3.i686.rpm
 xorg-x11-drv-qxl-debuginfo-0.0.14-14.el6_3.i686.rpm

- Scientific Linux Development Team
Your message here