Bug 1400438

Summary: CVE-2017-2633 qemu-kvm coredump in vnc_refresh_server_surface [rhel-6.9.z]
Product: Red Hat Enterprise Linux 6 Reporter: Guo, Zhiyi <zhguo>
Component: qemu-kvmAssignee: Marc-Andre Lureau <marcandre.lureau>
Status: CLOSED ERRATA QA Contact: Guo, Zhiyi <zhguo>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 6.9CC: ailan, berrange, chayang, ddepaula, jen, juzhang, kraxel, marcandre.lureau, mkenneth, ppandit, rbalakri, tlavigne, virt-bugs, virt-maint, zhguo
Target Milestone: rcKeywords: Security, SecurityTracking
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: qemu-kvm-0.12.1.2-2.503.el6_9.1 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-05-09 12:45:52 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1437060    
Bug Blocks: 1425939    

Comment 18 Prasad Pandit 2017-03-09 05:51:32 UTC 
Looks like this one won't make it into 6.9; Moving to 6.9.z.
Comment 21 Danilo de Paula 2017-03-27 13:34:26 UTC 
Fix included in qemu-kvm-0.12.1.2-2.503.el6_9.1
Comment 23 Guo, Zhiyi 2017-03-30 05:55:11 UTC 
Verified per comment https://bugzilla.redhat.com/show_bug.cgi?id=1425943#c5
Comment 25 errata-xmlrpc 2017-05-09 12:45:52 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2017:1206