--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-13536
2012-09-07 19:29:25
--------------------------------------------------------------------------------
Name : xen
Product : Fedora 18
Version : 4.1.3
Release : 4.fc18
URL : http://xen.org/
Summary : Xen is a virtual machine monitor
Description :
This package contains the XenD daemon and xm command line
tools, needed to manage virtual machines running under the
Xen hypervisor
--------------------------------------------------------------------------------
Update Information:
disable qemu monitor by default [XSA-19, CVE-2012-4411] (#855141)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #855140 - CVE-2012-4411 xen: qemu: guest administrator can access
qemu monitor console
https://bugzilla.redhat.com/show_bug.cgi?id=855140
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update xen' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-13513
2012-09-07 19:27:52
--------------------------------------------------------------------------------
Name : qemu
Product : Fedora 18
Version : 1.2.0
Release : 3.fc18
URL : http://www.qemu.org/
Summary : QEMU is a FAST! processor emulator
Description :
QEMU is a generic and open source processor emulator which achieves a good
emulation speed by using dynamic translation. QEMU has two operating modes:
* Full system emulation. In this mode, QEMU emulates a full system (for
example a PC), including a processor and various peripherials. It can be
used to launch different Operating Systems without rebooting the PC or
to debug system code.
* User mode emulation. In this mode, QEMU can launch Linux processes compiled
for one CPU on another CPU.
As QEMU requires no host kernel patches to run, it is safe and easy to use.
--------------------------------------------------------------------------------
Update Information:
Update qemu / spice packages to their latest upstream releases:
- qemu-1.2.0
- spice-0.11.3
- spice-protocol-0.12.1
- spice-gtk-0.13.29
- usbredir-0.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #853408 - qemu segfaults on shutdown when writing to a closed serial
socket (not in server mode)
https://bugzilla.redhat.com/show_bug.cgi?id=853408
[ 2 ] Bug #857228 - CVE-2012-4425 X.org: arbitrary code execution as root when
libdbus >= 1.5 is used [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=857228
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update qemu' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Posljednje sigurnosne preporuke