Lucene search
RedHatRHSA-2017:0351HistoryMar 01, 2017 - 7:53 a.m.
(RHSA-2017:0351) Important: qemu-kvm-rhev security update
2017-03-0107:53:05
access.redhat.com
44
EPSS
0.001
Percentile
51.0%
KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.
Security Fix(es):
- Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user inside guest could use this flaw to crash the QEMU process OR potentially execute arbitrary code on host with privileges of the QEMU process. (CVE-2017-2620)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | x86_64 | qemu-img-rhev | < 0.12.1.2-2.491.el6_8.7 | qemu-img-rhev-0.12.1.2-2.491.el6_8.7.x86_64.rpm |
| RedHat | 6 | x86_64 | qemu-kvm-rhev-debuginfo | < 0.12.1.2-2.491.el6_8.7 | qemu-kvm-rhev-debuginfo-0.12.1.2-2.491.el6_8.7.x86_64.rpm |
| RedHat | 6 | x86_64 | qemu-kvm-rhev | < 0.12.1.2-2.491.el6_8.7 | qemu-kvm-rhev-0.12.1.2-2.491.el6_8.7.x86_64.rpm |
| RedHat | 6 | x86_64 | qemu-kvm-rhev-tools | < 0.12.1.2-2.491.el6_8.7 | qemu-kvm-rhev-tools-0.12.1.2-2.491.el6_8.7.x86_64.rpm |
Related
gentoo
gentoo
Xen: Privilege Escalation
2017-03-28 00:00:00
QEMU: Multiple vulnerabilities
2017-04-10 00:00:00
nessus
nessus
GLSA-201703-07 : Xen: Privilege Escalation
2017-03-28 00:00:00
FreeBSD : xen-tools -- cirrus_bitblt_cputovideo does not check if memory region is safe (8cbd9c08-f8b9-11e6-ae1b-002590263bf5)
2017-02-22 00:00:00
RHEL 6 : qemu-kvm (RHSA-2017:0352)
2017-03-02 00:00:00
oraclelinux
oraclelinux
qemu-kvm security update
2017-03-01 00:00:00
kvm security update
2017-03-07 00:00:00
qemu-kvm security and bug fix update
2017-03-02 00:00:00
openvas
openvas
Fedora Update for xen FEDORA-2017-1607a3a78e
2017-03-09 00:00:00
RedHat Update for qemu-kvm RHSA-2017:0352-01
2017-03-03 00:00:00
CentOS Update for qemu-guest-agent CESA-2017:0352 centos6
2017-03-03 00:00:00
nvd
nvd
CVE-2017-2620
2018-07-27 19:29:00
fedora
fedora
[SECURITY] Fedora 25 Update: xen-4.7.1-9.fc25
2017-03-01 01:30:45
[SECURITY] Fedora 24 Update: xen-4.6.4-8.fc24
2017-03-08 13:33:09
[SECURITY] Fedora 24 Update: qemu-2.6.2-7.fc24
2017-03-21 16:52:35
redhat
redhat
(RHSA-2017:0352) Important: qemu-kvm security update
2017-03-01 08:42:26
(RHSA-2017:0328) Important: qemu-kvm-rhev security update
2017-02-27 23:06:44
(RHSA-2017:0329) Important: qemu-kvm-rhev security update
2017-02-27 23:06:47
freebsd
freebsd
cvelist
cvelist
CVE-2017-2620
2018-07-27 19:00:00
ubuntucve
ubuntucve
CVE-2017-2620
2017-02-22 00:00:00
xen
xen
cirrus_bitblt_cputovideo does not check if memory region is safe
2017-02-21 10:42:00
prion
prion
Out-of-bounds
2018-07-27 19:29:00
centos
centos
qemu security update
2017-03-01 12:08:31
qemu security update
2017-03-03 13:27:17
kmod, kvm security update
2017-03-08 18:33:47
debiancve
debiancve
CVE-2017-2620
2018-07-27 19:29:00
alpinelinux
alpinelinux
CVE-2017-2620
2018-07-27 19:29:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:15:42
redhatcve
redhatcve
CVE-2017-2620
2020-04-04 05:02:19
osv
osv
CVE-2017-2620
2018-07-27 19:29:00
xen - security update
2018-02-06 00:00:00
qemu - security update
2017-03-01 00:00:00
cve
cve
CVE-2017-2620
2018-07-27 19:29:00
suse
suse
Security update for xen (important)
2017-03-11 15:07:34
Security update for xen (important)
2017-02-27 18:13:48
Security update for kvm (important)
2017-04-28 21:11:21
debian
debian
[SECURITY] [DLA 1270-1] xen security update
2018-02-06 12:35:00
[SECURITY] [DLA 842-1] qemu-kvm security update
2017-02-28 22:09:32
[SECURITY] [DLA 845-1] qemu security update
2017-03-01 19:51:15
ubuntu
ubuntu
QEMU vulnerabilities
2017-04-20 00:00:00