| Summary: | CVE-2012-6075 qemu: e1000 driver buffer overflow when processing large packets when SBP and LPE flags are disabled | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | unspecified | CC: | amit.shah, berrange, bfan, cfergeau, dwmw2, itamar, jasowang, jforbes, juzhang, kraxel, leiwang, lkundrak, m.a.young, moli, mst, pbonzini, pmatouse, qguan, rhod, rjones, scottt.tw, vyasevic, wshi |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2013-04-24 07:39:49 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Bug Depends On: | 889304, 889305, 910839, 910840, 910841, 910842, 910843, 910844, 910845, 918288 | ||
| Bug Blocks: | 890969, 912639, 916344, 916610, 918294 | ||
|
Description
Jan Lieskovsky
2012-12-20 18:07:58 UTC
This issue affects the versions of the qemu package, as shipped with Fedora release of 16 and 17. Please schedule an update. -- This issue (probably [*]) affects the version of the qemu package, as shipped with Fedora EPEL 5. Please schedule an update. [*] Saying probably above, since in Fedora EPEL 5 version e1000_receive() routine is declared as returning void in comparison with more recent versions. Therefore not definitely sure the deficiency would be present on this version too. Needs further investigation by someone more familiar with the code. P.S.: Feel free to close the upcoming epel-5 bug (if you realise this isn't an issue for Fedora EPEL 5 version). Thank you, Jan. Created qemu tracking bugs for this issue Affects: fedora-all [bug 889304] Affects: epel-5 [bug 889305] The CVE identifier of CVE-2012-6075 has been assigned to this issue: http://www.openwall.com/lists/oss-security/2012/12/30/1 qemu-1.0.1-3.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report. qemu-1.2.2-2.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report. qemu-0.15.1-9.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report. Created xen tracking bugs for this issue Affects: fedora-all [bug 910845] Statement: (none) This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2013:0599 https://rhn.redhat.com/errata/RHSA-2013-0599.html This issue has been addressed in following products: RHEV-H and Agents for RHEL-6 Via RHSA-2013:0610 https://rhn.redhat.com/errata/RHSA-2013-0610.html This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2013:0608 https://rhn.redhat.com/errata/RHSA-2013-0608.html This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2013:0609 https://rhn.redhat.com/errata/RHSA-2013-0609.html This issue has been addressed in following products: OpenStack Folsom for RHEL 6 Via RHSA-2013:0639 https://rhn.redhat.com/errata/RHSA-2013-0639.html This issue has been addressed in following products: RHEV-H and Agents for RHEL-6 Via RHSA-2013:0636 https://rhn.redhat.com/errata/RHSA-2013-0636.html |