CESA-2019:2892 -- centos 6 qemu-kvm,qemu-guest-agentID: oval:org.secpod.oval:def:205372 | Date: (C)2019-10-03 (M)2024-01-29 |
Class: PATCH | Family: unix |
Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fix: * QEMU: slirp: heap buffer overflow while reassembling fragmented datagrams * QEMU: slirp: heap buffer overflow in tcp_emu * QEMU: ne2000: integer overflow leads to buffer overflow issue * QEMU: pcnet: integer overflow leads to buffer overflow * QEMU: qxl: null pointer dereference while releasing spice resources For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
Product: |
qemu-kvm |
qemu-guest-agent |