{"id":"RHSA-2017:1856","summary":"Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update","modified":"2026-02-20T10:01:53Z","published":"2024-09-15T23:56:21Z","upstream":["CVE-2016-4020","CVE-2017-2633","CVE-2017-5898"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:1856"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.4_Release_Notes/index.html"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1151859"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1299875"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1313686"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1342489"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1361488"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1375507"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1377087"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1377977"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1378541"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1419699"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1419898"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1425939"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1427176"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1430606"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1433920"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1436280"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1440987"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1441778"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1451470"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1452067"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1456983"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1856.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-4020"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-4020"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-4020"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-2633"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-2633"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-2633"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-5898"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-5898"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5898"}],"affected":[{"package":{"name":"qemu-img","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-img"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-common","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-kvm-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-kvm-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-tools","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-kvm-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-img","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-img"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-common","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-kvm-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-kvm-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-tools","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-kvm-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-img","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-img"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-common","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-kvm-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-kvm-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-tools","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-kvm-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-img","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-img"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-common","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-kvm-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-kvm-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}},{"package":{"name":"qemu-kvm-tools","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-kvm-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-141.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:1856.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L"}]}