Overview

File _patchinfo of Package patchinfo.import4582

<patchinfo incident="kvm" version="4582">
  <issue tracker="bnc" id="690781" />
  <issue tracker="bnc" id="689895" />
  <issue tracker="CVE" id="CVE-2011-1751" />
  <issue tracker="CVE" id="CVE-2011-1750" />
  <category>security</category>
  <rating>low</rating>
  <summary>kvm security update</summary>
  <description>By causing a hot-unplug of the pci-isa bridge from within
guests the qemu process could access already freed memory.
A privileged user inside the guest could exploit that to
crash the guest instance or potentially execute arbitrary
code on the host (CVE-2011-1751).

The virtio-blk driver did not properly validate read and
write request. A privileged user inside the guest could
exploit that to cause a heap corruption and crash the guest
instance or potentially execute arbitrary code on the host
(CVE-2011-1750).
</description>
  <packager>adrianSuSE</packager>
</patchinfo>
openSUSE Build Service is sponsored by
Places