An update for qemu-kvm is now available for Red Hat Enterprise Linux 6.Red Hat Product Security has rated this update as having a security impact ofModerate.

A Common Vulnerability Scoring System (CVSS) base score, which gives adetailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.
KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linuxon AMD64 and Intel 64 systems.

The qemu-kvm packages provide the user-spacecomponent for running virtual machines using KVM.Security Fix(es):* Quick emulator(Qemu) built with the virtio framework is vulnerable to anunbounded memory allocation issue.
It was found that a malicious guest usercould submit more requests than the virtqueue size permits. Processing a requestallocates a VirtQueueElement and therefore causes unbounded memory allocation onthe host controlled by the guest. (CVE-2016-5403)Red Hat would like to thank hongzhenhao (Marvel Team) for reporting this issue.
For details on how to apply this update, which includes the changes described inthis advisory, refer to:https://access.redhat.com/articles/11258After installing this update, shut down all running virtual machines. Once allvirtual machines have shut down, start them again for this update to takeeffect.Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
qemu-kvm-0.12.1.2-2.491.el6_8.3.src.rpm
    MD5: f8cd3ce588eb83994ae2f2b8981e282eSHA-256: ca3f8f44f8609b995fd07cf50644c76342c74d47c6355f41ca693614b1921cea
 
IA-32:
qemu-guest-agent-0.12.1.2-2.491.el6_8.3.i686.rpm
    MD5: 4e15c40e35e31cd27c445d58fd186da4SHA-256: 2149c7573a99c3e9186ee9924f387629d2d892e9d4b0a7d05e33409ff2c5d798
qemu-kvm-debuginfo-0.12.1.2-2.491.el6_8.3.i686.rpm
    MD5: e1a5aae09a580819696f20b37e884324SHA-256: d7d6f64a9a98fa9c41386b4b855fa30e64e14c14f783e780adc44527db61d841
 
x86_64:
qemu-guest-agent-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 53243b0a902a37e2c01e75adfbb74426SHA-256: cba5db5ce7f3aacf7afe8f86350d21918be4e57273981519d0009099a8716b5d
qemu-img-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 0b76fd6f32d28cc96181cef0167a9d21SHA-256: fe5db5a73b20bf808d78c2e4e275de779a347099220a09baeeac0fb4d3d2010b
qemu-kvm-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: f3e511253678e620fffc002673376ec3SHA-256: ccdb5dcd010cef5d077ddb4d60ecaada5485631f8a180d7bc782e3093fcbc71e
qemu-kvm-debuginfo-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: aa5b126bc514d589678ea78b6a533d9aSHA-256: f08a0915f4a4b4e0102e47deb731e0d72488da7cc6cd2a460780661002d2ba9f
qemu-kvm-tools-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 3640fed27890a9cc206eb842bf90b749SHA-256: c611ff7f35d3fb2fd1744b12f70f56184b8512460a959a0d8f45160b72f5e9ba
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
qemu-kvm-0.12.1.2-2.491.el6_8.3.src.rpm
    MD5: f8cd3ce588eb83994ae2f2b8981e282eSHA-256: ca3f8f44f8609b995fd07cf50644c76342c74d47c6355f41ca693614b1921cea
 
x86_64:
qemu-guest-agent-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 53243b0a902a37e2c01e75adfbb74426SHA-256: cba5db5ce7f3aacf7afe8f86350d21918be4e57273981519d0009099a8716b5d
qemu-img-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 0b76fd6f32d28cc96181cef0167a9d21SHA-256: fe5db5a73b20bf808d78c2e4e275de779a347099220a09baeeac0fb4d3d2010b
qemu-kvm-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: f3e511253678e620fffc002673376ec3SHA-256: ccdb5dcd010cef5d077ddb4d60ecaada5485631f8a180d7bc782e3093fcbc71e
qemu-kvm-debuginfo-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: aa5b126bc514d589678ea78b6a533d9aSHA-256: f08a0915f4a4b4e0102e47deb731e0d72488da7cc6cd2a460780661002d2ba9f
qemu-kvm-tools-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 3640fed27890a9cc206eb842bf90b749SHA-256: c611ff7f35d3fb2fd1744b12f70f56184b8512460a959a0d8f45160b72f5e9ba
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
qemu-kvm-0.12.1.2-2.491.el6_8.3.src.rpm
    MD5: f8cd3ce588eb83994ae2f2b8981e282eSHA-256: ca3f8f44f8609b995fd07cf50644c76342c74d47c6355f41ca693614b1921cea
 
IA-32:
qemu-guest-agent-0.12.1.2-2.491.el6_8.3.i686.rpm
    MD5: 4e15c40e35e31cd27c445d58fd186da4SHA-256: 2149c7573a99c3e9186ee9924f387629d2d892e9d4b0a7d05e33409ff2c5d798
qemu-kvm-debuginfo-0.12.1.2-2.491.el6_8.3.i686.rpm
    MD5: e1a5aae09a580819696f20b37e884324SHA-256: d7d6f64a9a98fa9c41386b4b855fa30e64e14c14f783e780adc44527db61d841
 
PPC:
qemu-guest-agent-0.12.1.2-2.491.el6_8.3.ppc64.rpm
    MD5: aa3cbf8ad7cccb0ebd0c9bab9676fbc7SHA-256: 9ced1c1d6e4a4f0b4f66ee35a2bbc342acb0c9ecb82dfdafbecd788fee0d19be
qemu-kvm-debuginfo-0.12.1.2-2.491.el6_8.3.ppc64.rpm
    MD5: 432b563eaadd5947a40fe780eee701a2SHA-256: 180c82ac22f639bfb1845ca9cbb2dfa3fdc5c2733f99c12c7b29da7ff59d43fe
 
x86_64:
qemu-guest-agent-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 53243b0a902a37e2c01e75adfbb74426SHA-256: cba5db5ce7f3aacf7afe8f86350d21918be4e57273981519d0009099a8716b5d
qemu-img-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 0b76fd6f32d28cc96181cef0167a9d21SHA-256: fe5db5a73b20bf808d78c2e4e275de779a347099220a09baeeac0fb4d3d2010b
qemu-kvm-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: f3e511253678e620fffc002673376ec3SHA-256: ccdb5dcd010cef5d077ddb4d60ecaada5485631f8a180d7bc782e3093fcbc71e
qemu-kvm-debuginfo-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: aa5b126bc514d589678ea78b6a533d9aSHA-256: f08a0915f4a4b4e0102e47deb731e0d72488da7cc6cd2a460780661002d2ba9f
qemu-kvm-tools-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 3640fed27890a9cc206eb842bf90b749SHA-256: c611ff7f35d3fb2fd1744b12f70f56184b8512460a959a0d8f45160b72f5e9ba
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
qemu-kvm-0.12.1.2-2.491.el6_8.3.src.rpm
    MD5: f8cd3ce588eb83994ae2f2b8981e282eSHA-256: ca3f8f44f8609b995fd07cf50644c76342c74d47c6355f41ca693614b1921cea
 
IA-32:
qemu-guest-agent-0.12.1.2-2.491.el6_8.3.i686.rpm
    MD5: 4e15c40e35e31cd27c445d58fd186da4SHA-256: 2149c7573a99c3e9186ee9924f387629d2d892e9d4b0a7d05e33409ff2c5d798
qemu-kvm-debuginfo-0.12.1.2-2.491.el6_8.3.i686.rpm
    MD5: e1a5aae09a580819696f20b37e884324SHA-256: d7d6f64a9a98fa9c41386b4b855fa30e64e14c14f783e780adc44527db61d841
 
x86_64:
qemu-guest-agent-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 53243b0a902a37e2c01e75adfbb74426SHA-256: cba5db5ce7f3aacf7afe8f86350d21918be4e57273981519d0009099a8716b5d
qemu-img-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 0b76fd6f32d28cc96181cef0167a9d21SHA-256: fe5db5a73b20bf808d78c2e4e275de779a347099220a09baeeac0fb4d3d2010b
qemu-kvm-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: f3e511253678e620fffc002673376ec3SHA-256: ccdb5dcd010cef5d077ddb4d60ecaada5485631f8a180d7bc782e3093fcbc71e
qemu-kvm-debuginfo-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: aa5b126bc514d589678ea78b6a533d9aSHA-256: f08a0915f4a4b4e0102e47deb731e0d72488da7cc6cd2a460780661002d2ba9f
qemu-kvm-tools-0.12.1.2-2.491.el6_8.3.x86_64.rpm
    MD5: 3640fed27890a9cc206eb842bf90b749SHA-256: c611ff7f35d3fb2fd1744b12f70f56184b8512460a959a0d8f45160b72f5e9ba
 
(The unlinked packages above are only available from the Red Hat Network)

1358359 – CVE-2016-5403 Qemu: virtio: unbounded memory allocation on host via guest leading to DoS

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:

Leave a Reply