Package qemu

Source package: qemu
Build time:  Oct 9, 2017, 11:37 AM
 in the task #188849
Category: Emulators
Report package bug
License:  GPL/LGPL/BSD
Summary:  QEMU CPU Emulator
QEMU is a fast processor emulator using dynamic translation to achieve
good emulation speed.  QEMU has two operating modes:

* Full system emulation.  In this mode, QEMU emulates a full system
  (for example a PC), including a processor and various peripherials.
  It can be used to launch different Operating Systems without rebooting
  the PC or to debug system code.

* User mode emulation.  In this mode, QEMU can launch Linux processes
  compiled for one CPU on another CPU.  It can be used to launch the
  Wine Windows API emulator or to ease cross-compilation and

As QEMU requires no host kernel patches to run, it is very safe and easy
to use.
List of rpms provided by this srpm: 
ivshmem-tools (x86_64, i586)
ivshmem-tools-debuginfo (x86_64, i586)
qemu (x86_64, i586)
qemu-aux (noarch)
qemu-common (noarch)
qemu-doc (noarch)
qemu-guest-agent (x86_64, i586)
qemu-guest-agent-debuginfo (x86_64, i586)
qemu-img (x86_64, i586)
qemu-img-debuginfo (x86_64, i586)
qemu-system (x86_64, i586)
qemu-system-debuginfo (x86_64, i586)
qemu-user (x86_64, i586)
qemu-user-debuginfo (x86_64, i586)
Last changes:
Sept. 26, 2017 Vladimir D. Seleznev
- Fixes:
  + CVE-2017-13672: vga: OOB read access during display update
  + CVE-2017-8380: scsi: off-by-one error in megasas_mmio_wri allows remote
    attackers to have unspecified impact via unknown vectors
  + CVE-2017-12809: ide: flushing of empty CDROM drives leads to NULL dereference
  + CVE-2017-10664: qemu-nbd: server breaks with SIGPIPE upon client abort
Sept. 14, 2017 Vladimir D. Seleznev
- Fixes:
  + CVE-2017-9374 usb: ehci host memory leakage during hotunplug
  + CVE-2017-9375 usb: xhci infinite recursive call via xhci_kick_ep
  + CVE-2017-9373 ide: ahci host memory leakage during hotunplug
  + CVE-2017-9503 scsi: null pointer dereference while processing megasas command
  + CVE-2017-9330 usb: ohci: infinite loop due to incorrect return value
  + CVE-2017-8379 input: host memory lekage via keyboard
  + CVE-2017-8309 audio: memory leak by repeatedly starting and stopping audio capture
  + CVE-2017-8112 scsi: vmw_pvscsi: infinite loop in pvscsi_log2
  + CVE-2017-8284 user-to-root privesc inside VM via bad translation caching
  + CVE-2017-7718 display: cirrus: OOB read access issue
  + CVE-2015-8345 net: eepro100: infinite loop in processing command block list
April 3, 2017 Denis Medvedev
- CVE-2017-6505, CVE-2017-5987, CVE-2017-5973,
  CVE-2017-5898, CVE-2017-5857,
  CVE-2017-5856, CVE-2017-5667,
  CVE-2017-5579, CVE-2017-5578,
  CVE-2017-5552, CVE-2017-5526,
  CVE-2017-5525 fixed

Back to Top