Quick Emulator(Qemu) built with the RTL8139 ethernet controller emulation support is vulnerable to an infinite loop issue. It could occur while transmitting packets in C+ mode of operation. A privileged user inside guest could use this flaw to consume excessive CPU cycles on the host, resulting in DoS situation. Upstream patch: --------------- -> https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg05495.html Reference: ---------- -> http://www.openwall.com/lists/oss-security/2016/10/24/5
Created xen tracking bugs for this issue: Affects: fedora-all [bug 1388048]
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 1388047]
Acknowledgments: Name: Andrew Henderson (Intelligent Automation Inc.)
commit c7c35916692fe010fef25ac338443d3fe40be225 Author: Prasad J Pandit <pjp> Date: Fri Oct 21 17:39:29 2016 +0530 net: rtl8139: limit processing of ring descriptors
This issue has been addressed in the following products: Red Hat OpenStack Platform 10.0 (Newton) Red Hat OpenStack Platform 11.0 (Ocata) Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7 Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7 Red Hat OpenStack Platform 8.0 (Liberty) Red Hat OpenStack Platform 9.0 (Mitaka) Via RHSA-2017:2408 https://access.redhat.com/errata/RHSA-2017:2408
This issue has been addressed in the following products: RHEV 4.X RHEV-H and Agents for RHEL-7 Via RHSA-2017:2392 https://access.redhat.com/errata/RHSA-2017:2392