SCIENTIFIC-LINUX-ERRATA Archives

March 2013

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Security ERRATA Important: kvm on SL5.x x86_64
From:
Pat Riehecky <[log in to unmask]>
Reply To:
Pat Riehecky <[log in to unmask]>
Date:
Thu, 7 Mar 2013 16:17:25 -0600
Content-Type:
text/plain
Parts/Attachments:
text/plain (26 lines) 
Synopsis:          Important: kvm security update
Issue Date:        2013-03-07
CVE Numbers:       CVE-2012-6075
--

A flaw was found in the way QEMU-KVM emulated the e1000 network interface
card when the host was configured to accept jumbo network frames, and a
guest using the e1000 emulated driver was not. A remote attacker could use
this flaw to crash the guest or, potentially, execute arbitrary code with
root privileges in the guest. (CVE-2012-6075)

Note that the procedure in the Solution section must be performed before
this update will take effect.
--

SL5
   x86_64
     kmod-kvm-83-262.el5_9.1.x86_64.rpm
     kmod-kvm-debug-83-262.el5_9.1.x86_64.rpm
     kvm-83-262.el5_9.1.x86_64.rpm
     kvm-debuginfo-83-262.el5_9.1.x86_64.rpm
     kvm-qemu-img-83-262.el5_9.1.x86_64.rpm
     kvm-tools-83-262.el5_9.1.x86_64.rpm

- Scientific Linux Development Team

ATOM RSS1 RSS2