stable

qemu-2.3.1-14.fc22

FEDORA-2016-a3298e39f7 created by crobinso 8 years ago for Fedora 22
  • CVE-2016-3710: incorrect bounds checking in vga (bz #1334345)
  • CVE-2016-3712: out of bounds read in vga (bz #1334342)
  • Fix USB redirection (bz #1330221)
  • CVE-2016-4037: infinite loop in usb ehci (bz #1328080)
  • CVE-2016-4001: buffer overflow in stellaris net (bz #1325885)
  • CVE-2016-2858: rng stack corruption (bz #1314677)
  • CVE-2016-2391: ohci: crash via multiple timers (bz #1308881)
  • CVE-2016-2198: ehci: null pointer dereference (bz #1303134)
  • Fix ./configure with ccache

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2016-a3298e39f7

This update has been submitted for testing by crobinso.

8 years ago

This update has been pushed to testing.

8 years ago
User Icon filiperosset commented & provided feedback 8 years ago
karma

no regressions noted

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

8 years ago

This update has been submitted for stable by crobinso.

8 years ago

This update has been pushed to stable.

8 years ago

Please login to add feedback.

Metadata
Type
security
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
8 years ago
in testing
8 years ago
in stable
8 years ago
BZ#1301643 CVE-2016-2198 Qemu: usb: ehci null pointer dereference in ehci_caps_write
0
0
BZ#1303134 CVE-2016-2198 Qemu: usb: ehci null pointer dereference in ehci_caps_write [fedora-all]
0
0
BZ#1304794 CVE-2016-2391 Qemu: usb: multiple eof_timers in ohci module leads to null pointer dereference
0
0
BZ#1308881 CVE-2016-2391 qemu: Holding multiple eof_timers at the same time in ohci usb mode leads to SIGSEGV [fedora-all]
0
0
BZ#1314676 CVE-2016-2858 Qemu: rng-random: arbitrary stack based allocation leading to corruption
0
0
BZ#1314677 Qemu: rng-random: arbitrary stack based allocation leading to corruption [fedora-all]
0
0
BZ#1318712 CVE-2016-3712 qemu-kvm: Out-of-bounds read when creating weird vga screen surface
0
0
BZ#1325129 CVE-2016-4037 Qemu: usb: Infinite loop vulnerability in usb_ehci using siTD process
0
0
BZ#1325884 CVE-2016-4001 Qemu: net: buffer overflow in stellaris_enet emulator
0
0
BZ#1325885 CVE-2016-4001 Qemu: net: buffer overflow in stellaris_enet emulator [fedora-all]
0
0
BZ#1328080 CVE-2016-4037 qemu: Infinite loop vulnerability in usb_ehci using siTD process [fedora-all]
0
0
BZ#1331401 CVE-2016-3710 qemu: incorrect banked access bounds checking in vga module
0
0
BZ#1334342 CVE-2016-3712 qemu: qemu-kvm: Out-of-bounds read when creating weird vga screen surface [fedora-all]
0
0
BZ#1334345 CVE-2016-3710 qemu: incorrect banked access bounds checking in vga module [fedora-all]
0
0

Automated Test Results