SUSE: 2016:2988-1 Important: QEMU Critical DoS Issue Fixes

suse

December 2, 2016

An update that solves 19 vulnerabilities and has two fixes An update that solves 19 vulnerabilities and has two fixes An update that solves 19 vulnerabilities and has two fixes is ...

Summary

This update for qemu fixes the following issues: - Patch queue updated from SLE12-SP1 - Change package post script udevadm trigger calls to be device specific (bsc#1002116) - Address various security/stability issues * Fix OOB access in xlnx.xpx-ethernetlite emulation (CVE-2016-7161 bsc#1001151) * Fix OOB access in VMware SVGA emulation (CVE-2016-7170 bsc#998516) * Fix DOS in USB xHCI emulation (CVE-2016-7466 bsc#1000345) * Fix DOS in Vmware pv scsi interface (CVE-2016-7421 bsc#999661) * Fix DOS in ColdFire Fast Ethernet Controller emulation (CVE-2016-7908 bsc#1002550) * Fix DOS in USB xHCI emulation (CVE-2016-8576 bsc#1003878) * Fix DOS in virtio-9pfs (CVE-2016-8578 bsc#1003894) * Fix DOS in virtio-9pfs (CVE-2016-9105 bsc#1007494) * Fix DOS in virtio-9pfs (CVE-2016-8577 bsc#1003893)

Topics Covered

security advisory critical issue security update DoS patch management SUSE qemu

References

#1000345 #1001151 #1002116 #1002550 #1002557

#1003878 #1003893 #1003894 #1004702 #1004707

#1006536 #1006538 #1007391 #1007450 #1007454

#1007493 #1007494 #1007495 #996524 #998516

#999661

Cross- CVE-2016-7161 CVE-2016-7170 CVE-2016-7421

CVE-2016-7466 CVE-2016-7908 CVE-2016-7909

CVE-2016-8576 CVE-2016-8577 CVE-2016-8578

CVE-2016-8667 CVE-2016-8669 CVE-2016-8909

CVE-2016-8910 CVE-2016-9101 CVE-2016-9102

CVE-2016-9103 CVE-2016-9104 CVE-2016-9105

CVE-2016-9106

Affected Products:

SUSE Linux Enterprise Server 12-SP1

SUSE Linux Enterprise Desktop 12-SP1

https://www.suse.com/security/cve/CVE-2016-7161.html

https://www.suse.com/security/cve/CVE-2016-7170.html

https://www.suse.com/security/cve/CVE-2016-7421.html

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2016:2988-1

Rating: important

Topics Covered

security advisory critical issue security update DoS patch management SUSE qemu

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2016:2988-1 Important: QEMU Critical DoS Issue Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2016:2988-1 Important: QEMU Critical DoS Issue Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!