Fedora

Fedora 21 Security Update: qemu-2.1.3-5.fc21

Leave a comment

Resolved Bugs
1204919 – Qemu: PRDT overflow from guest to host
1199400 – .vdi images: random IO errors / data corruption in VMs
1170612 – CVE-2014-8106 qemu: cirrus: insufficient blit region checks [fedora-all]
1205051 – CVE-2015-1779 qemu: vnc: insufficient resource limiting in VNC websockets decoder [fedora-all]
1199572 – CVE-2015-1779 qemu: vnc: insufficient resource limiting in VNC websockets decoder
1205322 – qemu: malicious PRDT flow from guest to host [fedora-all]
1192720 – ksm package has executable bits sets for .service files.
1169454 – CVE-2014-8106 qemu: cirrus: insufficient blit region checks<br
* CVE-2015-1779 vnc: insufficient resource limiting in VNC websockets decoder (bz #1205051, bz #1199572)
* Qemu: PRDT overflow from guest to host (bz #1204919, bz #1205322)
* CVE-2014-8106: cirrus: insufficient blit region checks (bz #1170612, bz #1169454)
* Fix .vdi disk corruption (bz #1199400)
* Don’t install ksm services as executable (bz #1192720)

Leave a Reply