Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.1.4.2016.2902.1
Categoría:SuSE Local Security Checks
Título:SUSE: Security Advisory (SUSE-SU-2016:2902-1)
Resumen:The remote host is missing an update for the 'kvm' package(s) announced via the SUSE-SU-2016:2902-1 advisory.
Descripción:Summary:
The remote host is missing an update for the 'kvm' package(s) announced via the SUSE-SU-2016:2902-1 advisory.

Vulnerability Insight:
This update for kvm fixes the following issues:
- Address various security/stability issues
* Fix OOB access in xlnx.xpx-ethernetlite emulation (CVE-2016-7161
bsc#1001151)
* Fix OOB access in VMware SVGA emulation (CVE-2016-7170 bsc#998516)
* Fix DOS in ColdFire Fast Ethernet Controller emulation (CVE-2016-7908
bsc#1002550)
* Fix DOS in USB xHCI emulation (CVE-2016-8576 bsc#1003878)
* Fix DOS in virtio-9pfs (CVE-2016-8578 bsc#1003894)
* Fix DOS in virtio-9pfs (CVE-2016-9105 bsc#1007494)
* Fix DOS in virtio-9pfs (CVE-2016-8577 bsc#1003893)
* Plug data leak in virtio-9pfs interface (CVE-2016-9103 bsc#1007454)
* Fix DOS in virtio-9pfs interface (CVE-2016-9102 bsc#1007450)
* Fix DOS in virtio-9pfs (CVE-2016-9106 bsc#1007495)
* Fix DOS in 16550A UART emulation (CVE-2016-8669 bsc#1004707)
* Fix DOS in PC-Net II emulation (CVE-2016-7909 bsc#1002557)
* Fix DOS in PRO100 emulation (CVE-2016-9101 bsc#1007391)
* Fix DOS in RTL8139 emulation (CVE-2016-8910 bsc#1006538)
* Fix DOS in Intel HDA controller emulation (CVE-2016-8909 bsc#1006536)
* Fix DOS in virtio-9pfs (CVE-2016-9104 bsc#1007493)
* Fix DOS in JAZZ RC4030 emulation (CVE-2016-8667 bsc#1004702)
- Patch queue updated from [link moved to references]
SLE11-SP4
- Remove semi-contradictory and now determined erroneous statement in
kvm-supported.txt regarding not running ntp in kvm guest when kvm-clock
is used. It is now recommended to use ntp in guest in this case.

Affected Software/OS:
'kvm' package(s) on SUSE Linux Enterprise Server 11-SP4.

Solution:
Please install the updated package(s).

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-7161
BugTraq ID: 93141
http://www.securityfocus.com/bid/93141
https://security.gentoo.org/glsa/201611-11
https://lists.debian.org/debian-lts-announce/2018/11/msg00038.html
http://www.openwall.com/lists/oss-security/2016/09/23/6
http://www.openwall.com/lists/oss-security/2016/09/23/8
https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg01598.html
https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg01877.html
SuSE Security Announcement: openSUSE-SU-2016:3237 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-12/msg00140.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-7170
BugTraq ID: 92904
http://www.securityfocus.com/bid/92904
http://www.openwall.com/lists/oss-security/2016/09/09/4
http://www.openwall.com/lists/oss-security/2016/09/09/7
https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg01764.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-7908
BugTraq ID: 93273
http://www.securityfocus.com/bid/93273
http://www.openwall.com/lists/oss-security/2016/10/03/2
http://www.openwall.com/lists/oss-security/2016/10/03/5
https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg05557.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-7909
BugTraq ID: 93275
http://www.securityfocus.com/bid/93275
http://www.openwall.com/lists/oss-security/2016/10/03/3
http://www.openwall.com/lists/oss-security/2016/10/03/6
https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg07942.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-8576
BugTraq ID: 93469
http://www.securityfocus.com/bid/93469
https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html
http://www.openwall.com/lists/oss-security/2016/10/10/6
http://www.openwall.com/lists/oss-security/2016/10/10/12
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg01265.html
RedHat Security Advisories: RHSA-2017:2392
https://access.redhat.com/errata/RHSA-2017:2392
RedHat Security Advisories: RHSA-2017:2408
https://access.redhat.com/errata/RHSA-2017:2408
Common Vulnerability Exposure (CVE) ID: CVE-2016-8577
BugTraq ID: 93473
http://www.securityfocus.com/bid/93473
http://www.openwall.com/lists/oss-security/2016/10/10/7
http://www.openwall.com/lists/oss-security/2016/10/10/13
Common Vulnerability Exposure (CVE) ID: CVE-2016-8578
BugTraq ID: 93474
http://www.securityfocus.com/bid/93474
http://www.openwall.com/lists/oss-security/2016/10/10/8
http://www.openwall.com/lists/oss-security/2016/10/10/14
https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg07143.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-8667
BugTraq ID: 93567
http://www.securityfocus.com/bid/93567
http://www.openwall.com/lists/oss-security/2016/10/14/6
http://www.openwall.com/lists/oss-security/2016/10/15/4
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02577.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-8669
BugTraq ID: 93563
http://www.securityfocus.com/bid/93563
http://www.openwall.com/lists/oss-security/2016/10/14/9
http://www.openwall.com/lists/oss-security/2016/10/15/5
Common Vulnerability Exposure (CVE) ID: CVE-2016-8909
BugTraq ID: 93842
http://www.securityfocus.com/bid/93842
http://www.openwall.com/lists/oss-security/2016/10/24/1
http://www.openwall.com/lists/oss-security/2016/10/24/4
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg04682.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-8910
BugTraq ID: 93844
http://www.securityfocus.com/bid/93844
http://www.openwall.com/lists/oss-security/2016/10/24/2
http://www.openwall.com/lists/oss-security/2016/10/24/5
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg05495.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-9101
BugTraq ID: 93957
http://www.securityfocus.com/bid/93957
https://security.gentoo.org/glsa/201701-49
http://www.openwall.com/lists/oss-security/2016/10/27/14
http://www.openwall.com/lists/oss-security/2016/10/30/5
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg03024.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-9102
BugTraq ID: 93962
http://www.securityfocus.com/bid/93962
http://www.openwall.com/lists/oss-security/2016/10/27/15
http://www.openwall.com/lists/oss-security/2016/10/30/6
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg01861.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-9103
BugTraq ID: 93955
http://www.securityfocus.com/bid/93955
http://www.openwall.com/lists/oss-security/2016/10/28/1
http://www.openwall.com/lists/oss-security/2016/10/30/7
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg01790.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-9104
BugTraq ID: 93956
http://www.securityfocus.com/bid/93956
http://www.openwall.com/lists/oss-security/2016/10/28/2
http://www.openwall.com/lists/oss-security/2016/10/30/8
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02942.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-9105
BugTraq ID: 93965
http://www.securityfocus.com/bid/93965
http://www.openwall.com/lists/oss-security/2016/10/28/3
http://www.openwall.com/lists/oss-security/2016/10/30/9
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02608.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-9106
BugTraq ID: 93964
http://www.securityfocus.com/bid/93964
http://www.openwall.com/lists/oss-security/2016/10/28/4
http://www.openwall.com/lists/oss-security/2016/10/30/10
https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02623.html
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2021 E-Soft Inc. Todos los derechos reservados.