El-errata: ELSA-2021-0347 Moderate: Oracle Linux 7 qemu-kvm security and bug fix update
Oracle Linux Security Advisory ELSA-2021-0347
http://linux.oracle.com/errata/ELSA-2021-0347.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
qemu-img-1.5.3-175.el7_9.3.x86_64.rpm
qemu-kvm-1.5.3-175.el7_9.3.x86_64.rpm
qemu-kvm-common-1.5.3-175.el7_9.3.x86_64.rpm
qemu-kvm-tools-1.5.3-175.el7_9.3.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/qemu-kvm-1.5.3-175.el7_9.3.src.rpm
Description of changes:
[1.5.3-175.el7_9.3]
- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
(qemu-kvm FTBFS on rhel7.9)
[1.5.3-175.el7_9.2]
- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch
[bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
(CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading
registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
(CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in
net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
A qemu-kvm security and bug fix update has been released for Oracle Linux 7.
