SUSE: 2017:1774-1 Important: QEMU Denial of Service Issues Resolved

suse

July 4, 2017

An update that solves 23 vulnerabilities and has four fixes An update that solves 23 vulnerabilities and has four fixes An update that solves 23 vulnerabilities and has four fixes ...

Summary

This update for qemu fixes several issues. These security issues were fixed: - CVE-2017-9330: USB OHCI Emulation in qemu allowed local guest OS users to cause a denial of service (infinite loop) by leveraging an incorrect return value (bsc#1042159). - CVE-2017-8379: Memory leak in the keyboard input event handlers support allowed local guest OS privileged users to cause a denial of service (host memory consumption) by rapidly generating large keyboard events (bsc#1037334). - CVE-2017-8309: Memory leak in the audio/audio.c allowed remote attackers to cause a denial of service (memory consumption) by repeatedly starting and stopping audio capture (bsc#1037242). - CVE-2017-7493: The VirtFS, host directory sharing via Plan 9 File System(9pfs) support, was vulnerable to an improper access control

Topics Covered

security advisory denial of service security update important memory leak SUSE QEMU

References

#1016503 #1016504 #1017081 #1017084 #1020427

#1021741 #1025109 #1025311 #1028184 #1028656

#1030624 #1031142 #1032075 #1034866 #1034908

#1035406 #1035950 #1036211 #1037242 #1037334

#1037336 #1039495 #1042159 #1042800 #1042801

#1043073 #1043296

Cross- CVE-2016-10028 CVE-2016-10029 CVE-2016-9602

CVE-2016-9603 CVE-2017-5579 CVE-2017-5973

CVE-2017-5987 CVE-2017-6505 CVE-2017-7377

CVE-2017-7471 CVE-2017-7493 CVE-2017-7718

CVE-2017-7980 CVE-2017-8086 CVE-2017-8112

CVE-2017-8309 CVE-2017-8379 CVE-2017-8380

CVE-2017-9330 CVE-2017-9373 CVE-2017-9374

CVE-2017-9375 CVE-2017-9503

Affected Products:

SUSE Linux Enterprise Server for Raspberry Pi 12-SP2

SUSE Linux Enterprise Server 12-SP2

SUSE Linux Ente...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2017:1774-1

Rating: important

Topics Covered

security advisory denial of service security update important memory leak SUSE QEMU

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2017:1774-1 Important: QEMU Denial of Service Issues Resolved

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2017:1774-1 Important: QEMU Denial of Service Issues Resolved

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!