openSUSE 16 Security Update : qemu (openSUSE-SU-2026:20567-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20567-1 advisory. Update to version 10.0.9. Security issues fixed: - CVE-2026-3196: unbounded memory allocation and host denial-of-service via PCMINFO requests se...

openSUSE 16 Security Update : qemu (openSUSE-SU-2026:20357-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20357-1 advisory. - Update to version 10.0.8 - CVE-2025-14876: Fixed unbounded allocation in virtio-crypto. bsc1255400 - CVE-2026-0665: Fixed PIRQ bounds check in...

Security update for qemu (moderate)

openSUSE security update: security update for qemu ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20357-1 Rating: moderate References: bsc1255400 bsc1256484 bsc1257474 bsc1257492 Cross-References: CVE-2025-14876 CVE-2026-0665 CVSS scores:...

SUSE-SU-2026:20693-1 Security update for qemu

This update for qemu fixes the following issues: - Update to version 10.0.8 - CVE-2025-14876: Fixed unbounded allocation in virtio-crypto. bsc1255400 - CVE-2026-0665: Fixed PIRQ bounds check in xenphysdevmappirq. bsc1256484...

SUSE-SU-2026:0889-1 Security update for qemu

This update for qemu fixes the following issue: - CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto bsc1255400...

SUSE-SU-2026:0832-1 Security update for qemu

This update for qemu fixes the following issues: Security issue: - CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto bsc1255400. Non security issues: - hw/virtio: Also include md stubs in case CONFIGVIRTIOPCI is not set jscPED-14271. - s390x/pv: prepare for memory devices...

SUSE-SU-2026:0662-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto bsc1255400. - CVE-2026-0665: out-of-bounds heap access can lead to a denial of service or potential memory corruption bsc1256484...

SUSE SLES15 Security Update : qemu (SUSE-SU-2026:0436-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0436-1 advisory. - CVE-2025-11234: Fixed use-after-free in websocket handshake code can lead to denial of service bsc1250984. Tenable has extracted the...

Security update for qemu

This update for qemu fixes the following issues: CVE-2025-11234: Fixed use-after-free in websocket handshake code can lead to denial of service bsc1250984. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2026:0288-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0288-1 advisory. Security issues fixed: - CVE-2025-12464: stack-based buffer overflow in the e1000 network device operations ca...

SUSE-SU-2026:0022-1 Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: - CVE-2025-12464: stack-based buffer overflow in the e1000 network device operations can be exploited by a malicious guest user to crash the QEMU process on the host bsc1253002. - CVE-2025-11234: use-after-free in WebSocket...

SUSE: Security Advisory (SUSE-SU-2025:4523-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 16 Security Update : qemu (openSUSE-SU-2025:20171-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:20171-1 advisory. Update to version 10.0.7. Security issues fixed: - CVE-2025-12464: stack-based buffer overflow in the e1000 network device operations can be...

Fedora: Security Advisory (FEDORA-2025-b8b6acb283)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 43 : qemu (2025-b8b6acb283)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-b8b6acb283 advisory. Fix crash with spice GL bz 2391334 ---- Update to 10.1.0 GA release ---- Automatic update for qemu-10.1.0-0.4.rc4.fc43. Tenable has extracted the preceding...

Security update for qemu

This update for qemu fixes the following issues: CVE-2024-8612: Fixed information leak in virtio devices bsc1230915. CVE-2024-7409: Fixed denial of service via improper synchronization in QEMU NBD Server during socket closure bsc1229007. CVE-2024-3447: Fixed heap buffer overflow in...

SUSE-SU-2025:0432-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2021-3611: Fixed segmentation fault due to stack overflow bsc1193914. Other fixes: - qemu.spec: mark bridge.conf as noreplace bsc1201944...

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2025-1085)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for qemu (SUSE-SU-2024:4304-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : QEMU update (USN-3651-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3651-1 advisory. Ken Johnson and Jann Horn independently discovered that microprocessors utilizing speculative execution of a memory read may allow...