Joined: 12 May 2004
|Posted: Sat Aug 30, 2014 2:26 am Post subject: [ GLSA 201408-17 ] QEMU: Multiple vulnerabilities
|Gentoo Linux Security Advisory
Title: QEMU: Multiple vulnerabilities (GLSA 201408-17)
Date: August 30, 2014
Updated: September 02, 2014
Bug(s): #201434, #486352, #505946, #507692, #507790, #507796, #510208, #510234
Multiple vulnerabilities have been found in QEMU, worst of which
allows local attackers to execute arbitrary code.
QEMU is a generic and open source machine emulator and virtualizer.
Vulnerable: < 2.0.0-r1
Unaffected: >= 2.0.0-r1
Architectures: All supported architectures
Multiple vulnerabilities have been discovered in QEMU. Please review the
CVE identifiers referenced below for details.
A local attacker could possibly execute arbitrary code with the
privileges of the process, or cause a Denial of
There is no known workaround at this time.
All QEMU users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=app-emulation/qemu-2.0.0-r1"
Last edited by GLSA on Wed Sep 03, 2014 4:33 am; edited 2 times in total
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum