SUSE Linux Enterprise 11 SP2: 2012:1205-1 important: kvm security issue
suse
September 18, 2012
An update that solves one vulnerability and has two fixes An update that solves one vulnerability and has two fixes An update that solves one vulnerability and has two fixes is now...
Summary
The kvm qemu vt100 emulation was affected by a problem
where specific vt100 sequences could have been used by
guest users to affect the host. (CVE-2012-3515 aka XSA-17).
Also the following non security bugs have been fixed:
* permit qemu-kvm -device "?" even when no /dev/kvm
(bnc#772586)
* SLES11SP2 KVM Virtio: on kvm guest, scsi inquiry was
still ok on the disabled subpaths. (bnc#770153)
Security Issue reference:
* CVE-2012-3515
Topics Covered
References
#770153 #772586 #777084
Cross- CVE-2012-3515
Affected Products:
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Desktop 11 SP2
https://www.suse.com/security/cve/CVE-2012-3515.html
https://login.microfocus.com/nidp/app/login?sid=0
https://login.microfocus.com/nidp/app/login?sid=0
https://login.microfocus.com/nidp/app/login?sid=0
https://login.microfocus.com/nidp/app/login?sid=0
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2012:1205-1
Rating: important
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!