Red Hat Product Errata RHSA-2020:2126 - Security Advisory
Issued:
2020-05-13
Updated:
2020-05-13

RHSA-2020:2126 - Security Advisory

Synopsis

Important: qemu-kvm security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for qemu-kvm is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.

Security Fix(es):

  • QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 7.6 x86_64
  • Red Hat Enterprise Linux Server - TUS 7.6 x86_64
  • Red Hat Enterprise Linux EUS Compute Node 7.6 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.6 x86_64

Fixes

  • BZ - 1734745 - CVE-2019-14378 QEMU: slirp: heap buffer overflow during packet reassembly

Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.6

SRPM
qemu-kvm-1.5.3-160.el7_6.6.src.rpm SHA-256: e5014b5450071f1a8f30b4a72bd04464d6fa1d6dd571a0aa6c9b9873d0157235
x86_64
qemu-img-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: af412027fb90f580ebbd612fec310bc78a35468ac6c29fb5945dbc9238107063
qemu-kvm-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 67bbb8745415e2e7df122810f29bf5639b14d832d5316e7e518c2aac2c79e58e
qemu-kvm-common-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: be8ced414c10b6940d10a45da39b3e0f21872f1148fc7bdd47cd393c66b78dad
qemu-kvm-debuginfo-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: cb55477edff3198c53c89cc7623285851f1c56a29c6133f71c129cd84190f55b
qemu-kvm-tools-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 8924bd4d0f5fabbba06dea64bd1b778c4f5bed21b323fcd7daeb1fdea57ec0dd

Red Hat Enterprise Linux Server - AUS 7.6

SRPM
qemu-kvm-1.5.3-160.el7_6.6.src.rpm SHA-256: e5014b5450071f1a8f30b4a72bd04464d6fa1d6dd571a0aa6c9b9873d0157235
x86_64
qemu-img-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: af412027fb90f580ebbd612fec310bc78a35468ac6c29fb5945dbc9238107063
qemu-kvm-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 67bbb8745415e2e7df122810f29bf5639b14d832d5316e7e518c2aac2c79e58e
qemu-kvm-common-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: be8ced414c10b6940d10a45da39b3e0f21872f1148fc7bdd47cd393c66b78dad
qemu-kvm-debuginfo-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: cb55477edff3198c53c89cc7623285851f1c56a29c6133f71c129cd84190f55b
qemu-kvm-tools-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 8924bd4d0f5fabbba06dea64bd1b778c4f5bed21b323fcd7daeb1fdea57ec0dd

Red Hat Enterprise Linux Server - TUS 7.6

SRPM
qemu-kvm-1.5.3-160.el7_6.6.src.rpm SHA-256: e5014b5450071f1a8f30b4a72bd04464d6fa1d6dd571a0aa6c9b9873d0157235
x86_64
qemu-img-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: af412027fb90f580ebbd612fec310bc78a35468ac6c29fb5945dbc9238107063
qemu-kvm-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 67bbb8745415e2e7df122810f29bf5639b14d832d5316e7e518c2aac2c79e58e
qemu-kvm-common-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: be8ced414c10b6940d10a45da39b3e0f21872f1148fc7bdd47cd393c66b78dad
qemu-kvm-debuginfo-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: cb55477edff3198c53c89cc7623285851f1c56a29c6133f71c129cd84190f55b
qemu-kvm-tools-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 8924bd4d0f5fabbba06dea64bd1b778c4f5bed21b323fcd7daeb1fdea57ec0dd

Red Hat Enterprise Linux EUS Compute Node 7.6

SRPM
qemu-kvm-1.5.3-160.el7_6.6.src.rpm SHA-256: e5014b5450071f1a8f30b4a72bd04464d6fa1d6dd571a0aa6c9b9873d0157235
x86_64
qemu-img-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: af412027fb90f580ebbd612fec310bc78a35468ac6c29fb5945dbc9238107063
qemu-kvm-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 67bbb8745415e2e7df122810f29bf5639b14d832d5316e7e518c2aac2c79e58e
qemu-kvm-common-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: be8ced414c10b6940d10a45da39b3e0f21872f1148fc7bdd47cd393c66b78dad
qemu-kvm-debuginfo-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: cb55477edff3198c53c89cc7623285851f1c56a29c6133f71c129cd84190f55b
qemu-kvm-tools-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 8924bd4d0f5fabbba06dea64bd1b778c4f5bed21b323fcd7daeb1fdea57ec0dd

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.6

SRPM
qemu-kvm-1.5.3-160.el7_6.6.src.rpm SHA-256: e5014b5450071f1a8f30b4a72bd04464d6fa1d6dd571a0aa6c9b9873d0157235
x86_64
qemu-img-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: af412027fb90f580ebbd612fec310bc78a35468ac6c29fb5945dbc9238107063
qemu-kvm-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 67bbb8745415e2e7df122810f29bf5639b14d832d5316e7e518c2aac2c79e58e
qemu-kvm-common-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: be8ced414c10b6940d10a45da39b3e0f21872f1148fc7bdd47cd393c66b78dad
qemu-kvm-debuginfo-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: cb55477edff3198c53c89cc7623285851f1c56a29c6133f71c129cd84190f55b
qemu-kvm-tools-1.5.3-160.el7_6.6.x86_64.rpm SHA-256: 8924bd4d0f5fabbba06dea64bd1b778c4f5bed21b323fcd7daeb1fdea57ec0dd

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.