Bug 1068613 - (CVE-2017-16845) VUL-1: CVE-2017-16845: qemu: ps2: information leakage via post_load routine
(CVE-2017-16845)
VUL-1: CVE-2017-16845: qemu: ps2: information leakage via post_load routine
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P4 - Low : Minor
: ---
Assigned To: Liang Yan
Security Team bot
https://smash.suse.de/issue/195126/
CVSSv2:SUSE:CVE-2017-16845:2.1:(AV:N/...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2017-11-17 07:35 UTC by Johannes Segitz
Modified: 2020-07-26 18:00 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Johannes Segitz 2017-11-17 07:35:19 UTC
rh#1514148

Quick Emulator(Qemu) built with the PS/2 keyboard and mouse emulation
support along with the migration feature enabled is vulnerable to an
information leakage flaw. It could occur while loading a migrated
snapshot on the destination host in PS2 post_load routine.

A privileged user could use this flaw to leak destination host memory
bytes.

Patch: https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1514148
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16845
http://seclists.org/oss-sec/2017/q4/290
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845
https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html
Comment 2 Swamp Workflow Management 2018-03-21 20:07:52 UTC
SUSE-SU-2018:0762-1: An update that solves 8 vulnerabilities and has four fixes is now available.

Category: security (important)
Bug References: 1040202,1068032,1068613,1070144,1071228,1073489,1074572,1076114,1076775,1076813,1082276,1083291
CVE References: CVE-2017-15119,CVE-2017-15124,CVE-2017-16845,CVE-2017-17381,CVE-2017-18043,CVE-2017-5715,CVE-2018-5683,CVE-2018-7550
Sources used:
SUSE Linux Enterprise Server 12-SP3 (src):    qemu-2.9.1-6.12.1
SUSE Linux Enterprise Desktop 12-SP3 (src):    qemu-2.9.1-6.12.1
SUSE CaaS Platform ALL (src):    qemu-2.9.1-6.12.1
Comment 3 Swamp Workflow Management 2018-03-22 23:07:41 UTC
openSUSE-SU-2018:0780-1: An update that solves 8 vulnerabilities and has four fixes is now available.

Category: security (important)
Bug References: 1040202,1068032,1068613,1070144,1071228,1073489,1074572,1076114,1076775,1076813,1082276,1083291
CVE References: CVE-2017-15119,CVE-2017-15124,CVE-2017-16845,CVE-2017-17381,CVE-2017-18043,CVE-2017-5715,CVE-2018-5683,CVE-2018-7550
Sources used:
openSUSE Leap 42.3 (src):    qemu-2.9.1-41.1, qemu-linux-user-2.9.1-41.1, qemu-testsuite-2.9.1-41.1
Comment 4 Swamp Workflow Management 2018-03-27 19:09:13 UTC
SUSE-SU-2018:0831-1: An update that solves 9 vulnerabilities and has four fixes is now available.

Category: security (important)
Bug References: 1040202,1068032,1068613,1070144,1071228,1073489,1076114,1076179,1076775,1076814,1082276,1083291,1085598
CVE References: CVE-2017-15119,CVE-2017-15124,CVE-2017-16845,CVE-2017-17381,CVE-2017-18030,CVE-2017-18043,CVE-2017-5715,CVE-2018-5683,CVE-2018-7550
Sources used:
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (src):    qemu-2.6.2-41.37.1
SUSE Linux Enterprise Server 12-SP2 (src):    qemu-2.6.2-41.37.1
SUSE Linux Enterprise Desktop 12-SP2 (src):    qemu-2.6.2-41.37.1
Comment 5 Liang Yan 2019-04-26 21:25:52 UTC
Personal bug clean up. Free free to reopen it if you have further questions.