Red Hat Product Errata RHSA-2015:1931 - Security Advisory

Issued:: 2015-10-26
Updated:: 2015-10-26

RHSA-2015:1931 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: qemu-kvm-rhev security update

Type/Severity

Security Advisory: Moderate

Topic

Updated qemu-kvm-rhev packages that fix one security issue are now
available for Red Hat Enterprise Virtualization Hypervisor 7.

Red Hat Product Security has rated this update as having Moderate security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.

Description

KVM (Kernel-based Virtual Machine) is a full virtualization solution for
Linux on AMD64 and Intel 64 systems. The qemu-kvm-rhev package provides the
user-space component for running virtual machines using KVM.

It was found that the QEMU's websocket frame decoder processed incoming
frames without limiting resources used to process the header and the
payload. An attacker able to access a guest's VNC console could use this
flaw to trigger a denial of service on the host by exhausting all available
memory and CPU. (CVE-2015-1779)

This issue was discovered by Daniel P. Berrange of Red Hat.

All qemu-kvm-rhev users are advised to upgrade to these updated packages,
which contain a backported patch to correct this issue. After installing
this update, shut down all running virtual machines. Once all virtual
machines have shut down, start them again for this update to take effect.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Virtualization 3 for RHEL 7 x86_64

Fixes

BZ - 1199572 - CVE-2015-1779 qemu: vnc: insufficient resource limiting in VNC websockets decoder

CVEs

CVE-2015-1779

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Virtualization 3 for RHEL 7

SRPM
qemu-kvm-rhev-2.1.2-23.el7_1.10.src.rpm	SHA-256: d9e6100d765e4aef8b7873014d6e03f4e6c154af4623c12585b28313328f121c
x86_64
libcacard-devel-rhev-2.1.2-23.el7_1.10.x86_64.rpm	SHA-256: 3574a75ef04b92821a70f870b9b5e7a5bf43f1d07a34790d13ba8ac11d95ea27
libcacard-rhev-2.1.2-23.el7_1.10.x86_64.rpm	SHA-256: 542dd96400661e7e375528da974e48058476128baeea972fe3163a30e9d3c86a
libcacard-tools-rhev-2.1.2-23.el7_1.10.x86_64.rpm	SHA-256: 6b7b8f7db2e07aa2ca7b02c959a5948974d3918a84aa7f693365731eeb0cedaa
qemu-img-rhev-2.1.2-23.el7_1.10.x86_64.rpm	SHA-256: 89e7040d6d39a37d0a9845d7651da1e5fa5047ca6b2f47a4d8802616ba8a850d
qemu-kvm-common-rhev-2.1.2-23.el7_1.10.x86_64.rpm	SHA-256: d870dbeee6edcad54f260f6a414967b3f9e00b383120d32237a14d4b0523f821
qemu-kvm-rhev-2.1.2-23.el7_1.10.x86_64.rpm	SHA-256: 517a54b87cc92b1e52954c91d8874196c22a0f56d35bf377ab35317d11705fe7
qemu-kvm-rhev-debuginfo-2.1.2-23.el7_1.10.x86_64.rpm	SHA-256: 0d42b8d39934bda0d9554fe1bedf16b424687501107b0cd398fec10008e52f6b
qemu-kvm-tools-rhev-2.1.2-23.el7_1.10.x86_64.rpm	SHA-256: ce9f70f86b75007767e018e0fc4dc9d4391c7ffe9f0e7cba7ceca99199f20b2b

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories