Bugzilla – Bug 1020589
VUL-0: CVE-2017-5526: kvm: qemu: audio: memory leakage in es1370 device
Last modified: 2017-09-21 14:35:31 UTC
Ref: http://seclists.org/oss-sec/2017/q1/125 ============================================ Hello, Quick Emulator(Qemu) built with the ES1370 audio device emulation support is vulnerable to a memory leakage issue. It could occur while doing a device unplug operation; Doing so repeatedly would result in leaking host memory, affecting other services on the host. A privileged user inside guest could use this flaw to cause a DoS and/or potentially crash the Qemu process on the host. Upstream patch: --------------- -> https://lists.nongnu.org/archive/html/qemu-devel/2017-01/msg01742.html Reference: ---------- -> https://bugzilla.redhat.com/show_bug.cgi?id=1414209 This issue was reported by Mr Lo Qiang of 360.cn Inc. Thank you. -- Prasad J Pandit / Red Hat Product Security Team 47AF CE69 3A90 54AA 9045 1053 DD13 3D32 FE5B 041F ============================================
bugbot adjusting priority
SUSE-SU-2017:0625-1: An update that solves 15 vulnerabilities and has four fixes is now available. Category: security (important) Bug References: 1014702,1015169,1016779,1017081,1017084,1020491,1020589,1020928,1021129,1021195,1021481,1022541,1023004,1023053,1023073,1023907,1024972,1026583,977027 CVE References: CVE-2016-10028,CVE-2016-10029,CVE-2016-10155,CVE-2016-9921,CVE-2016-9922,CVE-2017-2615,CVE-2017-2620,CVE-2017-5525,CVE-2017-5526,CVE-2017-5552,CVE-2017-5578,CVE-2017-5667,CVE-2017-5856,CVE-2017-5857,CVE-2017-5898 Sources used: SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (src): qemu-2.6.2-41.9.1 SUSE Linux Enterprise Server 12-SP2 (src): qemu-2.6.2-41.9.1 SUSE Linux Enterprise Desktop 12-SP2 (src): qemu-2.6.2-41.9.1
Fixed.
openSUSE-SU-2017:0707-1: An update that solves 15 vulnerabilities and has four fixes is now available. Category: security (important) Bug References: 1014702,1015169,1016779,1017081,1017084,1020491,1020589,1020928,1021129,1021195,1021481,1022541,1023004,1023053,1023073,1023907,1024972,1026583,977027 CVE References: CVE-2016-10028,CVE-2016-10029,CVE-2016-10155,CVE-2016-9921,CVE-2016-9922,CVE-2017-2615,CVE-2017-2620,CVE-2017-5525,CVE-2017-5526,CVE-2017-5552,CVE-2017-5578,CVE-2017-5667,CVE-2017-5856,CVE-2017-5857,CVE-2017-5898 Sources used: openSUSE Leap 42.2 (src): qemu-2.6.2-29.4, qemu-linux-user-2.6.2-29.1, qemu-testsuite-2.6.2-29.8
SUSE-SU-2017:1241-1: An update that solves 13 vulnerabilities and has four fixes is now available. Category: security (important) Bug References: 1013285,1014109,1014111,1014702,1015048,1015169,1016779,1020491,1020589,1020928,1021129,1022541,1023004,1023053,1023907,1024972,937125 CVE References: CVE-2016-10155,CVE-2016-9776,CVE-2016-9907,CVE-2016-9911,CVE-2016-9921,CVE-2016-9922,CVE-2017-2615,CVE-2017-2620,CVE-2017-5525,CVE-2017-5526,CVE-2017-5667,CVE-2017-5856,CVE-2017-5898 Sources used: SUSE Linux Enterprise Server 12-SP1 (src): qemu-2.3.1-32.11 SUSE Linux Enterprise Desktop 12-SP1 (src): qemu-2.3.1-32.11
openSUSE-SU-2017:1312-1: An update that solves 13 vulnerabilities and has four fixes is now available. Category: security (important) Bug References: 1013285,1014109,1014111,1014702,1015048,1015169,1016779,1020491,1020589,1020928,1021129,1022541,1023004,1023053,1023907,1024972,937125 CVE References: CVE-2016-10155,CVE-2016-9776,CVE-2016-9907,CVE-2016-9911,CVE-2016-9921,CVE-2016-9922,CVE-2017-2615,CVE-2017-2620,CVE-2017-5525,CVE-2017-5526,CVE-2017-5667,CVE-2017-5856,CVE-2017-5898 Sources used: openSUSE Leap 42.1 (src): qemu-2.3.1-25.1, qemu-linux-user-2.3.1-25.1, qemu-testsuite-2.3.1-25.1