Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

SUSE: 2012:1202-1 Important Security Update for KVM Vulnerabilities

suse
Calendar Grey September 18, 2012
Dist Suse Esm H88
SUSE has released a security update for kvm which resolves two critical vulnerabilities carrying high importance. Follow the instructions inside to apply the necessary patches.
An update that fixes two vulnerabilities is now available

Summary

The kvm qemu vt100 emulation was affected by a problem where specific vt100 sequences could have been used by guest users to affect the host. (CVE-2012-3515 aka XSA-17). Also a temp file race has been fixed. (CVE-2012-2652) Security Issue references: * CVE-2012-3515 * CVE-2012-2652 Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Studio Extension for System z 1.2: zypper in -t patch slestso12-kvm-6757 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Studio Extension for System z 1.2 (s390x): kvm-0.12.5-1.24.1

Topics%20covered

Topics Covered

security advisory update vulnerability patch important SUSE kvm

References

#764526 #777084

Cross- CVE-2012-2652 CVE-2012-3515

Affected Products:

SUSE Studio Extension for System z 1.2

https://www.suse.com/security/cve/CVE-2012-2652.html

https://www.suse.com/security/cve/CVE-2012-3515.html

https://login.microfocus.com/nidp/app/login?sid=0

https://login.microfocus.com/nidp/app/login?sid=0

https://login.microfocus.com/nidp/app/login?sid=0

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2012:1202-1
Rating: important

Topics%20covered

Topics Covered

security advisory update vulnerability patch important SUSE kvm

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here