Sicherheit: Mehrere Probleme in QEMU (Aktualisierung)
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in QEMU (Aktualisierung)
ID: FEDORA-2017-a314d15e62
Distribution: Fedora
Plattformen: Fedora 26
Datum: Di, 22. August 2017, 23:31
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8379
Applikationen: QEMU
Update von: Mehrere Probleme in QEMU


Fedora Update Notification
2017-08-22 19:36:30.389764

Name : qemu
Product : Fedora 26
Version : 2.9.0
Release : 5.fc26
URL : http://www.qemu.org/
Summary : QEMU is a FAST! processor emulator
Description :
QEMU is a generic and open source processor emulator which achieves a good
emulation speed by using dynamic translation. QEMU has two operating modes:

* Full system emulation. In this mode, QEMU emulates a full system (for
example a PC), including a processor and various peripherials. It can be
used to launch different Operating Systems without rebooting the PC or
to debug system code.
* User mode emulation. In this mode, QEMU can launch Linux processes compiled
for one CPU on another CPU.

As QEMU requires no host kernel patches to run, it is safe and easy to use.

Update Information:

This update backports some fixes for input issues (especially keyboard, over
VNC) that became apparent after the introduction of an input queue limit as a
fix for CVE-2017-8379. These issues especially affected the openQA automated
testing system. The update also drops the qemu-side workaround for AMD CPU
issues that have now been fixed elsewhere (see [bug
#1467599](https://bugzilla.redhat.com/show_bug.cgi?id=1467599)), and backports
binfmt/static improvements from Rawhide.

[ 1 ] Bug #1481858 - CVE-2017-8379 fix causes major regression in openQA
usage (programmatic typing via VNC)
[ 2 ] Bug #1467599 - Unable to start domain: the CPU is incompatible with
host CPU: Host CPU does not provide required features: svm

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade qemu' at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Neue Nachrichten