Quick Emulator(Qemu) built with the Block driver for iSCSI images support (virtio-blk) is vulnerable to a heap buffer overflow flaw. It could occur while processing iSCSI asynchronous I/O ioctl(2) calls. A user inside guest could use this flaw to crash the Qemu process resulting in DoS OR potentially leverage it to execute arbitrary code with privileges of the Qemu process on the host. Upstream patch: --------------- -> https://lists.gnu.org/archive/html/qemu-block/2016-05/msg00779.html Reference: ---------- -> http://www.openwall.com/lists/oss-security/2016/05/30/6
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 1340925]
qemu-2.6.0-4.fc24 has been pushed to the Fedora 24 stable repository. If problems still persist, please make note of it in this bug report.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2016:1606 https://rhn.redhat.com/errata/RHSA-2016-1606.html
This issue has been addressed in the following products: RHEV-H and Agents for RHEL-7 Via RHSA-2016:1607 https://rhn.redhat.com/errata/RHSA-2016-1607.html
This issue has been addressed in the following products: Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7 Via RHSA-2016:1655 https://rhn.redhat.com/errata/RHSA-2016-1655.html
This issue has been addressed in the following products: Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7 Via RHSA-2016:1654 https://rhn.redhat.com/errata/RHSA-2016-1654.html
This issue has been addressed in the following products: Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7 Via RHSA-2016:1653 https://rhn.redhat.com/errata/RHSA-2016-1653.html
This issue has been addressed in the following products: Red Hat OpenStack Platform 8.0 (Liberty) Via RHSA-2016:1756 https://rhn.redhat.com/errata/RHSA-2016-1756.html
This issue has been addressed in the following products: Red Hat OpenStack Platform 9.0 (Mitaka) Via RHSA-2016:1763 https://rhn.redhat.com/errata/RHSA-2016-1763.html