Oracle Linux 6276 Published by

A qemu-kvm security and bug fix update has been released for Oracle Linux 7.



El-errata: ELSA-2021-0347 Moderate: Oracle Linux 7 qemu-kvm security and bug fix update


Oracle Linux Security Advisory ELSA-2021-0347

  http://linux.oracle.com/errata/ELSA-2021-0347.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
qemu-img-1.5.3-175.el7_9.3.x86_64.rpm
qemu-kvm-1.5.3-175.el7_9.3.x86_64.rpm
qemu-kvm-common-1.5.3-175.el7_9.3.x86_64.rpm
qemu-kvm-tools-1.5.3-175.el7_9.3.x86_64.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates/qemu-kvm-1.5.3-175.el7_9.3.src.rpm


Description of changes:

[1.5.3-175.el7_9.3]
- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
(qemu-kvm FTBFS on rhel7.9)

[1.5.3-175.el7_9.2]
- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch
[bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
(CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading
registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
(CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in
net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])