{"id":"RHSA-2015:0349","summary":"Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update","modified":"2026-03-11T06:54:18.274656Z","published":"2024-09-13T09:22:21Z","upstream":["CVE-2014-3640","CVE-2014-7815","CVE-2014-7840","CVE-2014-8106"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2015:0349"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Virtualization_Deployment_and_Administration_Guide/index.html"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=895436"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=949385"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=980747"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=980833"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=990724"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=996011"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=999789"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1002493"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1017685"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1021788"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1026314"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1027565"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1029271"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1038914"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1039791"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1046574"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1046873"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1049734"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1052093"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1054077"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1064156"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1064647"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1066338"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1074219"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1074403"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1074913"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1075846"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1076326"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1079147"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1083413"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1085701"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1086598"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1086987"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1088116"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1088150"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1088176"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1088695"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1088822"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1089606"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1093983"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1094285"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1095645"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1096576"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1097020"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1097363"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1098086"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1098602"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1104748"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1107821"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1111450"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1113009"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1116728"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1116941"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1118707"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1122151"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1123372"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1130428"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1131316"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1134237"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1134241"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1134251"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1134283"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1138639"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1138691"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1140618"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1140742"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1141667"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1142290"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1144818"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1155518"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1157641"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1160237"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1161563"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1163075"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1169454"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1175325"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1180942"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0349.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2014-3640"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2014-3640"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3640"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2014-7815"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2014-7815"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2014-7815"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2014-7840"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2014-7840"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2014-7840"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2014-8106"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2014-8106"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2014-8106"}],"affected":[{"package":{"name":"libcacard","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/libcacard"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard-devel","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/libcacard-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard-tools","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/libcacard-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-img","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-img"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-common","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-kvm-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-kvm-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-tools","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/qemu-kvm-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/libcacard"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard-devel","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/libcacard-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard-tools","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/libcacard-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-img","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-img"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-common","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-kvm-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-kvm-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-tools","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/qemu-kvm-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/libcacard"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard-devel","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/libcacard-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard-tools","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/libcacard-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-img","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-img"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-common","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-kvm-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-kvm-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-tools","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/qemu-kvm-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/libcacard"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard-devel","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/libcacard-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"libcacard-tools","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/libcacard-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-img","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-img"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-common","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-kvm-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-kvm-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}},{"package":{"name":"qemu-kvm-tools","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/qemu-kvm-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10:1.5.3-86.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2015:0349.json"}}],"schema_version":"1.7.5"}