ALT-PU-2016-1617-1
Package qemu-kvm-el updated to version 0.12.1.2-alt11.M60C.3 for branch c6 in task 165989.
Closed vulnerabilities
Published: 2012-01-27
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2012-0029
Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.
Severity: HIGH (7.4)
References:
- http://git.qemu.org/?p=qemu.git%3Ba=log%3Bh=refs/heads/stable-1.0
- FEDORA-2012-8604
- SUSE-SU-2012:1320
- openSUSE-SU-2012:0207
- RHSA-2012:0370
- 47740
- 47741
- 47992
- 48318
- 50913
- RHSA-2012:0050
- 51642
- USN-1339-1
- https://bugzilla.redhat.com/show_bug.cgi?id=772075
- qemu-processtxdesc-bo(72656)
- http://git.qemu.org/?p=qemu.git%3Ba=log%3Bh=refs/heads/stable-1.0
- qemu-processtxdesc-bo(72656)
- https://bugzilla.redhat.com/show_bug.cgi?id=772075
- USN-1339-1
- 51642
- RHSA-2012:0050
- 50913
- 48318
- 47992
- 47741
- 47740
- RHSA-2012:0370
- openSUSE-SU-2012:0207
- SUSE-SU-2012:1320
- FEDORA-2012-8604