Synopsis: Moderate: qemu-kvm security update Advisory ID: SLSA-2017:2445-1 Issue Date: 2017-08-15 CVE Numbers: CVE-2017-10664 -- Security Fix(es): * Quick Emulator (QEMU) built with the Network Block Device (NBD) Server support is vulnerable to a crash via a SIGPIPE signal. The crash can occur if a client aborts a connection due to any failure during negotiation or read operation. A remote user/process could use this flaw to crash the qemu-nbd server resulting in a DoS. (CVE-2017-10664) -- SL7 x86_64 qemu-img-1.5.3-141.el7_4.1.x86_64.rpm qemu-kvm-1.5.3-141.el7_4.1.x86_64.rpm qemu-kvm-common-1.5.3-141.el7_4.1.x86_64.rpm qemu-kvm-debuginfo-1.5.3-141.el7_4.1.x86_64.rpm qemu-kvm-tools-1.5.3-141.el7_4.1.x86_64.rpm - Scientific Linux Development Team