Updated qemu-kvm packages that fix one security issue are now available forRed Hat Enterprise Linux 7.Red Hat Product Security has rated this update as having Important securityimpact. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available from the CVE link in theReferences section.

KVM (Kernel-based Virtual Machine) is a full virtualization solution forLinux on AMD64 and Intel 64 systems. The qemu-kvm package provides theuser-space component for running virtual machines using KVM.An out-of-bounds memory access flaw was found in the way QEMU’s virtualFloppy Disk Controller (FDC) handled FIFO buffer access while processingcertain FDC commands. A privileged guest user could use this flaw to crashthe guest or, potentially, execute arbitrary code on the host with theprivileges of the host’s QEMU process corresponding to the guest.(CVE-2015-3456)Red Hat would like to thank Jason Geffner of CrowdStrike for reportingthis issue.All qemu-kvm users are advised to upgrade to these updated packages, whichcontain a backported patch to correct this issue. After installing thisupdate, shut down all running virtual machines. Once all virtual machineshave shut down, start them again for this update to take effect.
Before applying this update, make sure all previously released erratarelevant to your system have been applied.For details on how to apply this update, refer to:https://access.redhat.com/articles/11258Red Hat Enterprise Linux Desktop (v. 7)

SRPMS:
qemu-kvm-1.5.3-86.el7_1.2.src.rpm
    MD5: 887b42b35f415508517c190dc9856402SHA-256: d197a68d0479022bff12de26411f2da266e079fde1a67fd7431ad4d45504fff4
 
x86_64:
libcacard-1.5.3-86.el7_1.2.i686.rpm
    MD5: 5c47a460509dc257ab6c3679bb5f66efSHA-256: f8d4518c502e7d2fec421c978f025af875a34060b57e1d97c9d9765036c788b5
libcacard-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 178a65051b99a847e417b26b824c3341SHA-256: 69da68868f889447e97543f2163445354d24905259813d2f7e5a13c72e8a2832
libcacard-devel-1.5.3-86.el7_1.2.i686.rpm
    MD5: 2d1546c895d4de046c9a291e9a27329fSHA-256: 109863361766aa168d3fa33c46ceb18c87374463e79645d3c1a4f1f49d87d6b3
libcacard-devel-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 726fe65995a8eb54289686579b4c5416SHA-256: 67d0696238fd31ac38cfaa8886516c081046f936da0154e1f712c08edc3690bb
libcacard-tools-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 8ce53974fdee8fb5dbe23439138ac81bSHA-256: 7f11f4001ed79085208d24cb1c1f4ff403659744d3c9cead025dbe70b397bff7
qemu-img-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 0189bd25683b3395939c61bfac64aa9cSHA-256: 9ad703d6fb661c7396e3379ea5a49aa1778efe2ecc60ec7e8b111cf79cca122d
qemu-kvm-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: e274406ffbe0268975b7e9e835f3826dSHA-256: a60fe8cf535cec6e593df9810d9409d6c3375dd6b3d05fd4f7b8318a652b600f
qemu-kvm-common-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 4e7a236b0d4cc02a4e1c5e7c107d3231SHA-256: e1978bfab7bc3640a76774a15c65f631e6b6f5d8da6ceb21e7237c8250ae13b2
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.i686.rpm
    MD5: fe3dd077a0bc0d9c68412519003390afSHA-256: cda3dd13ac1fc79d89a3221577d81bdf99883fc4cb0ffbf05d0b82ce7a696509
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 98eedacfc11e35f976647f9427b553f0SHA-256: f9f6a9936fad3a59aafcc2d0cfdf366e3983fc86c13dcb43b08f0cdf16b59d46
qemu-kvm-tools-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 5ed53551c8edbd44f8641db437038becSHA-256: a777b98dd318d3a41c6c6a3a70cd2b1aca2365b335df4a1bba0c6bb4515be483
 
Red Hat Enterprise Linux HPC Node (v. 7)

SRPMS:
qemu-kvm-1.5.3-86.el7_1.2.src.rpm
    MD5: 887b42b35f415508517c190dc9856402SHA-256: d197a68d0479022bff12de26411f2da266e079fde1a67fd7431ad4d45504fff4
 
x86_64:
libcacard-1.5.3-86.el7_1.2.i686.rpm
    MD5: 5c47a460509dc257ab6c3679bb5f66efSHA-256: f8d4518c502e7d2fec421c978f025af875a34060b57e1d97c9d9765036c788b5
libcacard-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 178a65051b99a847e417b26b824c3341SHA-256: 69da68868f889447e97543f2163445354d24905259813d2f7e5a13c72e8a2832
libcacard-devel-1.5.3-86.el7_1.2.i686.rpm
    MD5: 2d1546c895d4de046c9a291e9a27329fSHA-256: 109863361766aa168d3fa33c46ceb18c87374463e79645d3c1a4f1f49d87d6b3
libcacard-devel-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 726fe65995a8eb54289686579b4c5416SHA-256: 67d0696238fd31ac38cfaa8886516c081046f936da0154e1f712c08edc3690bb
libcacard-tools-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 8ce53974fdee8fb5dbe23439138ac81bSHA-256: 7f11f4001ed79085208d24cb1c1f4ff403659744d3c9cead025dbe70b397bff7
qemu-img-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 0189bd25683b3395939c61bfac64aa9cSHA-256: 9ad703d6fb661c7396e3379ea5a49aa1778efe2ecc60ec7e8b111cf79cca122d
qemu-kvm-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: e274406ffbe0268975b7e9e835f3826dSHA-256: a60fe8cf535cec6e593df9810d9409d6c3375dd6b3d05fd4f7b8318a652b600f
qemu-kvm-common-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 4e7a236b0d4cc02a4e1c5e7c107d3231SHA-256: e1978bfab7bc3640a76774a15c65f631e6b6f5d8da6ceb21e7237c8250ae13b2
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.i686.rpm
    MD5: fe3dd077a0bc0d9c68412519003390afSHA-256: cda3dd13ac1fc79d89a3221577d81bdf99883fc4cb0ffbf05d0b82ce7a696509
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 98eedacfc11e35f976647f9427b553f0SHA-256: f9f6a9936fad3a59aafcc2d0cfdf366e3983fc86c13dcb43b08f0cdf16b59d46
qemu-kvm-tools-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 5ed53551c8edbd44f8641db437038becSHA-256: a777b98dd318d3a41c6c6a3a70cd2b1aca2365b335df4a1bba0c6bb4515be483
 
Red Hat Enterprise Linux Server (v. 7)

SRPMS:
qemu-kvm-1.5.3-86.el7_1.2.src.rpm
    MD5: 887b42b35f415508517c190dc9856402SHA-256: d197a68d0479022bff12de26411f2da266e079fde1a67fd7431ad4d45504fff4
 
PPC:
libcacard-1.5.3-86.el7_1.2.ppc.rpm
    MD5: 7d67b1d410a69fd7e620f13e7971eeb0SHA-256: e21efb31e6532c4af12cc138a0d4a972fce7a0c1ee04cb1f60ef1b15cf1d22a8
libcacard-1.5.3-86.el7_1.2.ppc64.rpm
    MD5: 711fc6011dfa7d892ff0138477886908SHA-256: 93affccb312c5a6cd95de986be66dae1169a6fd6e3afff8fc9f759812e27eca9
libcacard-devel-1.5.3-86.el7_1.2.ppc.rpm
    MD5: ff8fa7c0b370f577ed049e08307c3409SHA-256: 4ac0e383a32506b4bd80200f0d15619d6a1b53a3f48a0a89cbd8a106750643c5
libcacard-devel-1.5.3-86.el7_1.2.ppc64.rpm
    MD5: 0ecb42172443102189681ca45dd2d1f5SHA-256: eaa005a066670b50e26a8a3d130e283f595531887570a22375a12fc0509bf4a9
libcacard-tools-1.5.3-86.el7_1.2.ppc64.rpm
    MD5: ab61c97be8d6d67c6828168184ff0864SHA-256: dba2906158cf5cf2ad67167f9b3f0b8831b2d665d796a1f6cab752a1964228e0
qemu-img-1.5.3-86.el7_1.2.ppc64.rpm
    MD5: 4317af01de14f2817ff6adb6bb5247a0SHA-256: b155d447f2f4c2a3af7c2f2463cffbb771721a8871e8e9188034bcaf54839b69
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.ppc.rpm
    MD5: afd265288f3d0ee34b93f0d8c16b0cb2SHA-256: 334bf03488ca58b566fa02d6b4459c13d65ec10068dc5ab2ad5580c1ebcf2bcd
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.ppc64.rpm
    MD5: c5309740f34622926e345e06e92b96ddSHA-256: ff4f20c8c7f55ad01d23141424e45c57a5258408d28b68c719cae02d168f4b8a
 
x86_64:
libcacard-1.5.3-86.el7_1.2.i686.rpm
    MD5: 5c47a460509dc257ab6c3679bb5f66efSHA-256: f8d4518c502e7d2fec421c978f025af875a34060b57e1d97c9d9765036c788b5
libcacard-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 178a65051b99a847e417b26b824c3341SHA-256: 69da68868f889447e97543f2163445354d24905259813d2f7e5a13c72e8a2832
libcacard-devel-1.5.3-86.el7_1.2.i686.rpm
    MD5: 2d1546c895d4de046c9a291e9a27329fSHA-256: 109863361766aa168d3fa33c46ceb18c87374463e79645d3c1a4f1f49d87d6b3
libcacard-devel-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 726fe65995a8eb54289686579b4c5416SHA-256: 67d0696238fd31ac38cfaa8886516c081046f936da0154e1f712c08edc3690bb
libcacard-tools-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 8ce53974fdee8fb5dbe23439138ac81bSHA-256: 7f11f4001ed79085208d24cb1c1f4ff403659744d3c9cead025dbe70b397bff7
qemu-img-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 0189bd25683b3395939c61bfac64aa9cSHA-256: 9ad703d6fb661c7396e3379ea5a49aa1778efe2ecc60ec7e8b111cf79cca122d
qemu-kvm-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: e274406ffbe0268975b7e9e835f3826dSHA-256: a60fe8cf535cec6e593df9810d9409d6c3375dd6b3d05fd4f7b8318a652b600f
qemu-kvm-common-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 4e7a236b0d4cc02a4e1c5e7c107d3231SHA-256: e1978bfab7bc3640a76774a15c65f631e6b6f5d8da6ceb21e7237c8250ae13b2
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.i686.rpm
    MD5: fe3dd077a0bc0d9c68412519003390afSHA-256: cda3dd13ac1fc79d89a3221577d81bdf99883fc4cb0ffbf05d0b82ce7a696509
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 98eedacfc11e35f976647f9427b553f0SHA-256: f9f6a9936fad3a59aafcc2d0cfdf366e3983fc86c13dcb43b08f0cdf16b59d46
qemu-kvm-tools-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 5ed53551c8edbd44f8641db437038becSHA-256: a777b98dd318d3a41c6c6a3a70cd2b1aca2365b335df4a1bba0c6bb4515be483
 
Red Hat Enterprise Linux Workstation (v. 7)

SRPMS:
qemu-kvm-1.5.3-86.el7_1.2.src.rpm
    MD5: 887b42b35f415508517c190dc9856402SHA-256: d197a68d0479022bff12de26411f2da266e079fde1a67fd7431ad4d45504fff4
 
x86_64:
libcacard-1.5.3-86.el7_1.2.i686.rpm
    MD5: 5c47a460509dc257ab6c3679bb5f66efSHA-256: f8d4518c502e7d2fec421c978f025af875a34060b57e1d97c9d9765036c788b5
libcacard-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 178a65051b99a847e417b26b824c3341SHA-256: 69da68868f889447e97543f2163445354d24905259813d2f7e5a13c72e8a2832
libcacard-devel-1.5.3-86.el7_1.2.i686.rpm
    MD5: 2d1546c895d4de046c9a291e9a27329fSHA-256: 109863361766aa168d3fa33c46ceb18c87374463e79645d3c1a4f1f49d87d6b3
libcacard-devel-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 726fe65995a8eb54289686579b4c5416SHA-256: 67d0696238fd31ac38cfaa8886516c081046f936da0154e1f712c08edc3690bb
libcacard-tools-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 8ce53974fdee8fb5dbe23439138ac81bSHA-256: 7f11f4001ed79085208d24cb1c1f4ff403659744d3c9cead025dbe70b397bff7
qemu-img-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 0189bd25683b3395939c61bfac64aa9cSHA-256: 9ad703d6fb661c7396e3379ea5a49aa1778efe2ecc60ec7e8b111cf79cca122d
qemu-kvm-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: e274406ffbe0268975b7e9e835f3826dSHA-256: a60fe8cf535cec6e593df9810d9409d6c3375dd6b3d05fd4f7b8318a652b600f
qemu-kvm-common-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 4e7a236b0d4cc02a4e1c5e7c107d3231SHA-256: e1978bfab7bc3640a76774a15c65f631e6b6f5d8da6ceb21e7237c8250ae13b2
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.i686.rpm
    MD5: fe3dd077a0bc0d9c68412519003390afSHA-256: cda3dd13ac1fc79d89a3221577d81bdf99883fc4cb0ffbf05d0b82ce7a696509
qemu-kvm-debuginfo-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 98eedacfc11e35f976647f9427b553f0SHA-256: f9f6a9936fad3a59aafcc2d0cfdf366e3983fc86c13dcb43b08f0cdf16b59d46
qemu-kvm-tools-1.5.3-86.el7_1.2.x86_64.rpm
    MD5: 5ed53551c8edbd44f8641db437038becSHA-256: a777b98dd318d3a41c6c6a3a70cd2b1aca2365b335df4a1bba0c6bb4515be483
 
(The unlinked packages above are only available from the Red Hat Network)
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from:

Leave a Reply