CESA-2017:1681 -- centos 7 qemu-kvmID: oval:org.secpod.oval:def:204538 | Date: (C)2017-07-17 (M)2022-10-10 |
Class: PATCH | Family: unix |
Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm package provides the user-space component for running virtual machines that use KVM. Security Fix: * Quick Emulator built with Network Block Device Server support was vulnerable to a null-pointer dereference issue. The flaw could occur when releasing a client, which was not initialized due to failed negotiation. A remote user or process could exploit this flaw to crash the qemu-nbd server