SUSE alert SUSE-SU-2019:14151-1 (kvm)
| From: | <sle-security-updates@lists.suse.com> | |
| To: | <sle-security-updates@lists.suse.com> | |
| Subject: | SUSE-SU-2019:14151-1: important: Security update for kvm | |
| Date: | Wed, 21 Aug 2019 21:15:04 +0200 | |
| Message-ID: | <20190821191504.03D53FCD3@maintenance.suse.de> |
SUSE Security Update: Security update for kvm ______________________________________________________________________________ Announcement ID: SUSE-SU-2019:14151-1 Rating: important References: #1135902 #1140402 #1143794 Cross-References: CVE-2019-12155 CVE-2019-13164 CVE-2019-14378 Affected Products: SUSE Linux Enterprise Server 11-SP4-LTSS ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for kvm fixes the following issues: Security issues fixed: - CVE-2019-14378: Security fix for heap overflow in ip_reass on big packet input (bsc#1143794). - CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources (bsc#1135902). - CVE-2019-13164: Security fix for qemu-bridge-helper ACL can be bypassed when names are too long (bsc#1140402). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP4-LTSS: zypper in -t patch slessp4-kvm-14151=1 Package List: - SUSE Linux Enterprise Server 11-SP4-LTSS (i586 s390x x86_64): kvm-1.4.2-60.27.1 References: https://www.suse.com/security/cve/CVE-2019-12155.html https://www.suse.com/security/cve/CVE-2019-13164.html https://www.suse.com/security/cve/CVE-2019-14378.html https://bugzilla.suse.com/1135902 https://bugzilla.suse.com/1140402 https://bugzilla.suse.com/1143794 _______________________________________________ sle-security-updates mailing list sle-security-updates@lists.suse.com http://lists.suse.com/mailman/listinfo/sle-security-updates