RHSA-2019:2425HighCVSS 7.8
Red Hat Security Advisory: qemu-kvm-rhev security and bug fix update
🔗 CVE IDs covered (6)
📋 Description
CVE-2018-15746 — QEMU: seccomp: blacklist is not applied to all threads CVE-2018-17958 — QEMU: rtl8139: integer overflow leads to buffer overflow CVE-2018-17963 — QEMU: net: ignore packets with large size CVE-2019-6501 — QEMU: scsi-generic: possible OOB access while handling inquiry request CVE-2019-6778 — QEMU: slirp: heap buffer overflow in tcp_emu() CVE-2019-9824 — QEMU: slirp: information leakage in tcp_emu() due to uninitialized stack variables
🔗 References (12)
- selfhttps://access.redhat.com/errata/RHSA-2019:2425
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1615637
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1636712
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1636777
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1664205
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1668160
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1678515
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1728358
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1728359
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1728360
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2425.json