[SECURITY] Fedora 8 Update: kvm-60-6.fc8

updates at fedoraproject.org updates at fedoraproject.org
Thu May 29 02:49:33 UTC 2008


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-4604
2008-05-28 22:52:23
--------------------------------------------------------------------------------

Name        : kvm
Product     : Fedora 8
Version     : 60
Release     : 6.fc8
URL         : http://kvm.sf.net
Summary     : Kernel-based Virtual Machine
Description :
KVM (for Kernel-based Virtual Machine) is a full virtualization solution
for Linux on x86 hardware.

Using KVM, one can run multiple virtual machines running unmodified Linux
or Windows images. Each virtual machine has private virtualized hardware:
a network card, disk, graphics adapter, etc.

--------------------------------------------------------------------------------
ChangeLog:

* Tue May 27 2008 Glauber Costa <gcosta at redhat.com> - 60-6.fc8
- Fix Cirrus heap overflow vulnerability (#448524)
* Fri May 23 2008 Daniel P. Berrange <berrange at redhat.com> - 60-5.fc8
- Put PTY in rawmode
* Fri May 16 2008 Glauber Costa <gcosta at redhat.com> - 60-4.fc8
- Fix problem with cirrus device that was breaking vnc connections (rhbz #446830)
* Wed Feb 27 2008 Daniel P. Berrange <berrange at redhat.com> - 60-3.fc8
- Fix block device checks for extendable disk formats (rhbz #434978)
* Sat Feb 23 2008 Daniel P. Berrange <berrange at redhat.com> - 60-2.fc8
- Fix block device extents check (rhbz #433560)
* Thu Jan 31 2008 Jeremy Katz <katzj at redhat.com> 
- We don't need e2fsprogs-devel to build anymore (#331871)
* Thu Jan 24 2008 Daniel P. Berrange <berrange at redhat.com> - 60-1.fc9
- Updated to kvm-60
- Fix license tag to keep rpmlint quiet
- Remove unused PPC, Sparc and PPC Video BIOS
* Tue Jan 15 2008 Bill Nottingham <notting at redhat.com>: - 59-1
- add upstream patch to fix VMs that no longer boot (#427317)
- update to kvm-59
* Thu Dec 27 2007 Jeremy Katz <katzj at redhat.com> - 58-2
- Fix up defaults patch to apply
* Thu Dec 27 2007 Jeremy Katz <katzj at redhat.com> - 58-1
- Update to kvm-58
* Thu Dec 13 2007 Jeremy Katz <katzj at redhat.com> - 56-1
- Update to kvm-56
* Tue Dec  4 2007 Jeremy Katz <katzj at redhat.com> - 55-1
- Update to kvm-55
* Mon Dec  3 2007 Jeremy Katz <katzj at redhat.com> - 54-1
- update to kvm-54
* Tue Nov 20 2007 Jeremy Katz <katzj at redhat.com> - 53-1
- update to kvm-53
* Wed Nov  7 2007 Jeremy Katz <katzj at redhat.com> - 51-1
- update to kvm-51
* Tue Nov  6 2007 Jeremy Katz <katzj at redhat.com> - 50-1
- update to kvm-50, drop all the patches that have gone upstream
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #237342 - CVE-2007-1320 xen/qemu Cirrus LGD-54XX "bitblt" Heap Overflow
        https://bugzilla.redhat.com/show_bug.cgi?id=237342
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kvm' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------




More information about the Fedora-package-announce mailing list