CVE-2012-0029

Common Vulnerabilities and Exposures

Upstream information

CVE-2012-0029 at MITRE

Description

Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.

NVD CVSS v2 Base Score: 7.4 (AV:A/AC:M/Au:S/C:C/I:C/A:C)

Novell/SUSE information

Novell Bugzilla entries: 740165, 747331, 757537

SUSE Security Advisories:

SUSE-SU-2012:1320-1, published Tue, 9 Oct 2012 21:08:49 +0200 (CEST)
openSUSE-SU-2012:0207-1, published Thu, 9 Feb 2012 19:09:50 +0100 (CET)
openSUSE-SU-2012:0267-1, published Fri, 17 Feb 2012 18:08:21 +0100 (CET)
openSUSE-SU-2012:0347-1, published Fri, 9 Mar 2012 15:08:56 +0100 (CET)
openSUSE-SU-2012:0548-1, published Mon, 23 Apr 2012 12:08:17 +0200 (CEST)

List of released packages

Product(s)	Fixed package version(s)	References
openSUSE 11.4 DEBUGINFO	`libvirt-client-debuginfo >= 0.8.8-0.14.1` `libvirt-debuginfo >= 0.8.8-0.14.1` `libvirt-debugsource >= 0.8.8-0.14.1` `libvirt-python-debuginfo >= 0.8.8-0.14.1` `xen-debugsource >= 4.0.3_01-0.2.1` `xen-kmp-default-debuginfo >= 4.0.3_01_k2.6.37.6_0.11-0.2.1` `xen-kmp-desktop-debuginfo >= 4.0.3_01_k2.6.37.6_0.11-0.2.1` `xen-kmp-pae-debuginfo >= 4.0.3_01_k2.6.37.6_0.11-0.2.1` `xen-libs-debuginfo >= 4.0.3_01-0.2.1` `xen-tools-debuginfo >= 4.0.3_01-0.2.1` `xen-tools-domU-debuginfo >= 4.0.3_01-0.2.1`
openSUSE 11.4	`libvirt >= 0.8.8-0.14.1` `libvirt-client >= 0.8.8-0.14.1` `libvirt-devel >= 0.8.8-0.14.1` `libvirt-doc >= 0.8.8-0.14.1` `libvirt-python >= 0.8.8-0.14.1` `virt-utils >= 1.1.5-1.4.1` `xen >= 4.0.3_01-0.2.1` `xen-devel >= 4.0.3_01-0.2.1` `xen-doc-html >= 4.0.3_01-0.2.1` `xen-doc-pdf >= 4.0.3_01-0.2.1` `xen-kmp-default >= 4.0.3_01_k2.6.37.6_0.11-0.2.1` `xen-kmp-desktop >= 4.0.3_01_k2.6.37.6_0.11-0.2.1` `xen-kmp-pae >= 4.0.3_01_k2.6.37.6_0.11-0.2.1` `xen-libs >= 4.0.3_01-0.2.1` `xen-tools >= 4.0.3_01-0.2.1` `xen-tools-domU >= 4.0.3_01-0.2.1`
openSUSE 11.4 DEBUGINFO	`qemu-debuginfo >= 0.14.0_rc1-1.6.1` `qemu-debugsource >= 0.14.0_rc1-1.6.1`
openSUSE 11.4	`qemu >= 0.14.0_rc1-1.6.1`
SUSE Studio Extension for System z 1.2	`kvm >= 0.12.5-1.20.2`	studioonsite1.2.s390x SAT Patch Nr: 5656
SUSE Studio Onsite 1.2 [Appliance - Studio]	`qemu >= 0.10.1-0.5.7.1`	studioonsite1.2.x86-64 SAT Patch Nr: 6852
SLE 11 SP1 DEBUGINFO	`qemu-debuginfo >= 0.10.1-0.5.5.1` `qemu-debugsource >= 0.10.1-0.5.5.1`	sle11-sp1-sdk.x86-64 sle11-sp1-sdk.x86 sle11-sp2-sdk.x86 slepos11-sp1.x86 sle11-sp2-sdk.x86-64 slepos11-sp1.x86-64 sle11-sp1-sdk.x86 slepos11-sp1.x86 slepos11-sp1.x86-64 sle11-sp1-sdk.x86-64 SAT Patch Nr: 5803
SUSE Linux Enterprise Software Development Kit 11 SP1 SUSE Linux Enterprise Software Development Kit 11 SP2	`qemu >= 0.10.1-0.5.5.1`	sle11-sp1-sdk.x86-64 sle11-sp1-sdk.x86 sle11-sp2-sdk.x86 slepos11-sp1.x86 sle11-sp2-sdk.x86-64 slepos11-sp1.x86-64 sle11-sp1-sdk.x86 slepos11-sp1.x86 slepos11-sp1.x86-64 sle11-sp1-sdk.x86-64 SAT Patch Nr: 5803
SLE 11 SP1 DEBUGINFO	`kvm-debuginfo >= 0.12.5-1.20.1` `kvm-debugsource >= 0.12.5-1.20.1`	sles11-sp1.x86 sled11-sp1.x86 sles11-sp1.x86-64 sled11-sp1.x86-64 SAT Patch Nr: 5655
SUSE Linux Enterprise Desktop 11 SP1 SUSE Linux Enterprise Server 11 SP1	`kvm >= 0.12.5-1.20.1`	sles11-sp1.x86 sled11-sp1.x86 sles11-sp1.x86-64 sled11-sp1.x86-64 SAT Patch Nr: 5655
openSUSE 11.4 DEBUGINFO	`kvm-debuginfo >= 0.14.0.0-1.14.2` `kvm-debugsource >= 0.14.0.0-1.14.2`
openSUSE 11.4	`kvm >= 0.14.0.0-1.14.2`
SLE 11 SP1 DEBUGINFO	`libvirt-debuginfo >= 0.7.6-1.29.2` `libvirt-debugsource >= 0.7.6-1.29.2` `xen-debuginfo >= 4.0.3_21548_02-0.5.2` `xen-debugsource >= 4.0.3_21548_02-0.5.2`	sles11-sp1-vmware.x86 sled11-sp1.x86 sled11-sp1.x86-64 sles11-sp1-vmware.x86-64 sle11-sp1-sdk.x86 sles11-sp1.x86-64 sles11-sp1.x86 sle11-sp1-sdk.x86-64 SAT Patch Nr: 5796
SUSE Linux Enterprise Software Development Kit 11 SP1	`libvirt-devel >= 0.7.6-1.29.2` `xen-devel >= 4.0.3_21548_02-0.5.2`	sles11-sp1-vmware.x86 sled11-sp1.x86 sled11-sp1.x86-64 sles11-sp1-vmware.x86-64 sle11-sp1-sdk.x86 sles11-sp1.x86-64 sles11-sp1.x86 sle11-sp1-sdk.x86-64 SAT Patch Nr: 5796
SUSE Linux Enterprise Desktop 11 SP1	`libvirt >= 0.7.6-1.29.2` `libvirt-doc >= 0.7.6-1.29.2` `libvirt-python >= 0.7.6-1.29.2` `virt-utils >= 1.1.3-1.5.1` `xen >= 4.0.3_21548_02-0.5.2` `xen-kmp-default >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2` `xen-kmp-pae >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2` `xen-libs >= 4.0.3_21548_02-0.5.2` `xen-tools >= 4.0.3_21548_02-0.5.2` `xen-tools-domU >= 4.0.3_21548_02-0.5.2`	sles11-sp1-vmware.x86 sled11-sp1.x86 sled11-sp1.x86-64 sles11-sp1-vmware.x86-64 sle11-sp1-sdk.x86 sles11-sp1.x86-64 sles11-sp1.x86 sle11-sp1-sdk.x86-64 SAT Patch Nr: 5796
SUSE Linux Enterprise Desktop 11 SP1	`libvirt >= 0.7.6-1.29.2` `libvirt-doc >= 0.7.6-1.29.2` `libvirt-python >= 0.7.6-1.29.2` `virt-utils >= 1.1.3-1.5.1` `xen >= 4.0.3_21548_02-0.5.2` `xen-kmp-default >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2` `xen-libs >= 4.0.3_21548_02-0.5.2` `xen-tools >= 4.0.3_21548_02-0.5.2` `xen-tools-domU >= 4.0.3_21548_02-0.5.2`	sles11-sp1-vmware.x86 sled11-sp1.x86 sled11-sp1.x86-64 sles11-sp1-vmware.x86-64 sle11-sp1-sdk.x86 sles11-sp1.x86-64 sles11-sp1.x86 sle11-sp1-sdk.x86-64 SAT Patch Nr: 5796
SUSE Linux Enterprise Server 11 SP1	`libvirt >= 0.7.6-1.29.2` `libvirt-doc >= 0.7.6-1.29.2` `libvirt-python >= 0.7.6-1.29.2` `virt-utils >= 1.1.3-1.5.1` `xen >= 4.0.3_21548_02-0.5.2` `xen-doc-html >= 4.0.3_21548_02-0.5.2` `xen-doc-pdf >= 4.0.3_21548_02-0.5.2` `xen-kmp-default >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2` `xen-kmp-trace >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2` `xen-libs >= 4.0.3_21548_02-0.5.2` `xen-tools >= 4.0.3_21548_02-0.5.2` `xen-tools-domU >= 4.0.3_21548_02-0.5.2`	sles11-sp1-vmware.x86 sled11-sp1.x86 sled11-sp1.x86-64 sles11-sp1-vmware.x86-64 sle11-sp1-sdk.x86 sles11-sp1.x86-64 sles11-sp1.x86 sle11-sp1-sdk.x86-64 SAT Patch Nr: 5796
SUSE Linux Enterprise Server 11 SP1	`libvirt >= 0.7.6-1.29.2` `libvirt-doc >= 0.7.6-1.29.2` `libvirt-python >= 0.7.6-1.29.2` `virt-utils >= 1.1.3-1.5.1` `xen >= 4.0.3_21548_02-0.5.2` `xen-doc-html >= 4.0.3_21548_02-0.5.2` `xen-doc-pdf >= 4.0.3_21548_02-0.5.2` `xen-kmp-default >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2` `xen-kmp-pae >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2` `xen-kmp-trace >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2` `xen-libs >= 4.0.3_21548_02-0.5.2` `xen-tools >= 4.0.3_21548_02-0.5.2` `xen-tools-domU >= 4.0.3_21548_02-0.5.2`	sles11-sp1-vmware.x86 sled11-sp1.x86 sled11-sp1.x86-64 sles11-sp1-vmware.x86-64 sle11-sp1-sdk.x86 sles11-sp1.x86-64 sles11-sp1.x86 sle11-sp1-sdk.x86-64 SAT Patch Nr: 5796
SUSE Linux Enterprise Server 11 SP1 for VMware SUSE Linux Enterprise Server 11 SP2	`xen-kmp-trace >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2`	sles11-sp1-vmware.x86 sled11-sp1.x86 sled11-sp1.x86-64 sles11-sp1-vmware.x86-64 sle11-sp1-sdk.x86 sles11-sp1.x86-64 sles11-sp1.x86 sle11-sp1-sdk.x86-64 SAT Patch Nr: 5796

Products

Products By Category

Collaboration

Endpoint Management

File & Networking Services

Services & Support

Help Yourself

Let Us Help

Download

IT Consulting

Technical Training

Customer Center

Contribute

Partners

Partner With Novell

PartnerNet

Find a Partner

Developers

Communities

About Novell

How to Buy