关键信息 Alert ID: RHSA-2011:1777 Severity: Important Type: Security Advisory Published Date: 2011-12-06 Updated Date: 2011-12-06 Overview Synopsis: qemu-kvm security update for Red Hat Enterprise Linux 6. Vulnerability Description Issue: A flaw in qemu-kvm related to VSC_ATR messages for a CCID USB smart card reader could cause a crash or privilege escalation (CVE-2011-4111). Affected Systems: Users of qemu-kvm on Red Hat Enterprise Linux 6 and related versions. Affected Products Multiple Red Hat Enterprise Linux versions and derivatives. Fixes and Links CVE: CVE-2011-4111 Bugzilla ID: 751310 Action Update to the provided patched versions of qemu-kvm to resolve this issue. SHUTDOWN all virtual machines after the upgrade. For more, check the linked Red Hat documentation.