Red Hat Security Advisory 2015-1000-01

Discussion in 'News Aggregator' started by Packet Storm, 14 May 2015.

  1. Packet Storm

    Packet Storm Guest

    Red Hat Security Advisory 2015-1000-01 - KVM is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm-rhev package provides the user-space component for running virtual machines using KVM. An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileges of the host's QEMU process corresponding to the guest.

    Continue reading...
     

Share This Page

Loading...