Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20190729)
High Nessus Plugin ID 127728
Synopsis
The remote Scientific Linux host is missing one or more security updates.
Description
Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide the user-space component for running virtual machines that use KVM on the IBM z Systems, IBM Power, and 64-bit ARM architectures.
Security Fix(es) :
- QEMU: device_tree: heap buffer overflow while loading device tree blob (CVE-2018-20815)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es) :
- As newer machine remove csske feature, detection of the processor fail and machine used old version as fallback.
This update make feature conditional so detection of newer cpu works properly. (BZ#1720262)
Solution
Update the affected packages.