Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 543
Alerts This Week
Warning Icon 1 543

Scientific Linux SL5.x SLSA-2015:1189-1 Important KVM Update

Scientific Large Esm H446
Important: kvm security update
Date: Fri, 26 Jun 2015 21:17:31 +0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Connie Sieh 
Subject: Security ERRATA Important: kvm on SL5.x x86_64
MIME-Version: 1.0
Message-ID: <20150626211731.28911.45463@slpackages.fnal.gov>

Synopsis: Important: kvm security update
Advisory ID: SLSA-2015:1189-1
Issue Date: 2015-06-25
CVE Numbers: CVE-2015-3209
--

A flaw was found in the way QEMU's AMD PCnet Ethernet emulation handled
multi-TMD packets with a length above 4096 bytes. A privileged guest user
in a guest with an AMD PCNet ethernet card enabled could potentially use
this flaw to execute arbitrary code on the host with the privileges of the
hosting QEMU process. (CVE-2015-3209)

KVM must be "restarted" before this update will take effect.

 Shutdown all KVM virtual machines.

 Either reboot or unload and reload the following kernel modules: kvm, ksm, kvm-intel or kvm-amd.

 Start the KVM virtual machines.

--

SL5
 x86_64
 kmod-kvm-83-273.el5_11.x86_64.rpm
 kmod-kvm-debug-83-273.el5_11.x86_64.rpm
 kvm-83-273.el5_11.x86_64.rpm
 kvm-debuginfo-83-273.el5_11.x86_64.rpm
 kvm-qemu-img-83-273.el5_11.x86_64.rpm
 kvm-tools-83-273.el5_11.x86_64.rpm

- Scientific Linux Development Team