VENOM: QEMU 漏洞 (CVE-2015-3456)

Solution Verified - Updated -

Environment

  • Red Hat Enterprise Linux 7
  • Red Hat Enterprise Linux 6
  • Red Hat Enterprise Linux 5
  • OpenStack Platform 4 (RHEL 6)
  • OpenStack Platform 5 (RHEL 6)
  • OpenStack Platform 5 (RHEL 7)
  • OpenStack Platform 6 (RHEL 7)
  • Red Hat Enteprise Virtualization 3 (RHEL 6)
  • Red Hat Enteprise Virtualization 3 (RHEL 7)

Issue

Red Hat 产品安全团队发现'缓存溢出'漏洞,该漏洞可影响 KVM/QEMU 和 Xen hypervisor 的 QEMU 组件中实施的软盘控制器(Floppy Disk Controller,FDC)模拟。已为该漏洞分配 CVE-2015-3456,目前称之为 VENOM,目前被评级为有重要影响。

Resolution

更新信息及解决方案请查看:VENOM: QEMU 漏洞 (CVE-2015-3456)

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.