Lucene search
GoogleOSV:SUSE-SU-2024:2977-1HistoryAug 20, 2024 - 8:08 a.m.
Security update for qemu
2024-08-2008:08:22
Google
osv.dev
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
High
This update for qemu fixes the following issues:
- CVE-2023-2861: Fixed improper access control on special files via 9p protocol (bsc#1212968)
- CVE-2024-4467: Fixed denial of service and file read/write via qemu-img info command (bsc#1227322)
Other fixes:
- Fixed qemu build compilation with binutils 2.41 upgrade (bsc#1215311)
Related
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:2977-1)
2024-08-21 00:00:00
Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2024-2405)
2024-09-12 00:00:00
openSUSE: Security Advisory for qemu (SUSE-SU-2024:3077-1)
2024-09-04 00:00:00
nessus
nessus
SUSE SLES15 Security Update : qemu (SUSE-SU-2024:2977-1)
2024-08-21 00:00:00
RHEL 9 : qemu-kvm (RHSA-2024:4277)
2024-07-02 00:00:00
RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2024:4373)
2024-07-08 00:00:00
ubuntucve
ubuntucve
CVE-2024-4467
2024-07-02 00:00:00
CVE-2023-2861
2023-06-30 00:00:00
osv
osv
Security update for qemu
2024-09-02 14:42:23
Important: qemu-kvm security update
2024-07-02 00:00:00
Important: virt:rhel and virt-devel:rhel security update
2024-07-09 00:00:00
redhat
redhat
(RHSA-2024:4420) Important: virt:rhel and virt-devel:rhel security update
2024-07-09 09:48:22
(RHSA-2024:4373) Important: virt:rhel and virt-devel:rhel security update
2024-07-08 13:08:52
(RHSA-2024:4374) Important: virt:rhel and virt-devel:rhel security update
2024-07-08 13:09:07
oraclelinux
oraclelinux
virt:ol and virt-devel:rhel security update
2024-07-12 00:00:00
qemu-kvm security update
2024-07-02 00:00:00
qemu-kvm security update
2024-09-19 00:00:00
nvd
nvd
CVE-2024-4467
2024-07-02 16:15:05
CVE-2023-2861
2023-12-06 07:15:41
almalinux
almalinux
Important: qemu-kvm security update
2024-07-02 00:00:00
Important: virt:rhel and virt-devel:rhel security update
2024-07-09 00:00:00
redos
redos
ROS-20240917-03
2024-09-17 00:00:00
ROS-20240611-14
2024-06-11 00:00:00
redhatcve
redhatcve
vulnrichment
vulnrichment
CVE-2024-4467 Qemu-kvm: 'qemu-img info' leads to host file read/write
2024-07-02 15:57:23
CVE-2023-2861 Qemu: 9pfs: improper access control on special files
2023-12-06 06:19:40
debiancve
debiancve
CVE-2024-4467
2024-07-02 16:15:05
CVE-2023-2861
2023-12-06 07:15:41
cvelist
cvelist
CVE-2024-4467 Qemu-kvm: 'qemu-img info' leads to host file read/write
2024-07-02 15:57:23
CVE-2023-2861 Qemu: 9pfs: improper access control on special files
2023-12-06 06:19:40
cve
cve
CVE-2024-4467
2024-07-02 16:15:05
CVE-2023-2861
2023-12-06 07:15:41
prion
prion
Design/Logic Flaw
2023-12-06 07:15:00
cbl_mariner
cbl_mariner
CVE-2023-2861 affecting package qemu for versions less than 8.2.0-1
2024-03-19 17:21:46
veracode
veracode
Improper Access Control
2023-07-09 23:31:15
alpinelinux
alpinelinux
CVE-2023-2861
2023-12-06 07:15:41
virtuozzo
virtuozzo
Virtuozzo Hybrid Infrastructure 6.1 Update 1.5 (6.1.1-49)
2024-07-17 00:00:00
Virtuozzo Hybrid Infrastructure 6.0 Update 1.9 (6.0.1-102)
2024-07-17 00:00:00
Virtuozzo Hybrid Infrastructure 6.2 (6.2.0-142)
2024-07-17 00:00:00
amazon
amazon
Important: qemu
2024-08-14 19:06:00
Medium: qemu
2023-07-17 17:40:00
debian
debian
[SECURITY] [DLA 3759-1] qemu security update
2024-03-11 17:27:07
mageia
mageia
Updated xen, qemu and libvirt packages fix security vulnerabilities
2024-02-25 01:51:43
gentoo
gentoo
QEMU: Multiple Vulnerabilities
2024-08-09 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2024-01-08 00:00:00
QEMU regression
2024-06-06 00:00:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
High
Related for OSV:SUSE-SU-2024:2977-1