openSUSE 16 Security Update : qemu (openSUSE-SU-2026:20357-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20357-1 advisory. - Update to version 10.0.8 - CVE-2025-14876: Fixed unbounded allocation in virtio-crypto. bsc1255400 - CVE-2026-0665: Fixed PIRQ bounds check in...

Security update for qemu (moderate)

openSUSE security update: security update for qemu ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20357-1 Rating: moderate References: bsc1255400 bsc1256484 bsc1257474 bsc1257492 Cross-References: CVE-2025-14876 CVE-2026-0665 CVSS scores:...

OPENSUSE-SU-2026:20357-1 Security update for qemu

This update for qemu fixes the following issues: - Update to version 10.0.8 - CVE-2025-14876: Fixed unbounded allocation in virtio-crypto. bsc1255400 - CVE-2026-0665: Fixed PIRQ bounds check in xenphysdevmappirq. bsc1256484...

CVE-2026-0665

An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process via the emulated Xen physdev hypercall interface, leading to a denial of service or potential memory corruption...

UBUNTU-CVE-2026-0665

An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process via the emulated Xen physdev hypercall interface, leading to a denial of service or potential memory corruption...

CVE-2026-0665 Qemu-kvm: heap off-by-one in kvm xen physdevop_map_pirq

An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process via the emulated Xen physdev hypercall interface, leading to a denial of service or potential memory corruption...

SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2026:0445-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0445-1 advisory. - CVE-2026-0665: Added PIRQ bounds check in xenphysdevmappirq to avoid an out-of-bounds heap. bsc1256484 Other fixes: -...

Security update for qemu

This update for qemu fixes the following issues: CVE-2026-0665: Added PIRQ bounds check in xenphysdevmappirq to avoid an out-of-bounds heap. bsc1256484 Other fixes: Fixed that QEMU migration fails if a qemu-vdagent channel is present in the VM bsc1257474 Patch Instructions: To install this SUSE...

PT-2026-4318

Name of the Vulnerable Software and Affected Versions QEMU affected versions not specified Description An error in QEMU’s KVM Xen guest support allows a malicious guest to cause out-of-bounds heap accesses within the QEMU process. This is triggered through the emulated Xen physdev hypercall...

CVE-2024-27415

CVE-2024-27415 affects Linux kernel netfilter/bridge. Root cause: nf_confirm and conntrack race when multicast/broadcast frames clone, causing a shared nf_conn entry to be referenced twice before confirmation. Result: a multicast flow can lead to a clone skb’s nfct being unconfirmed and race agai...

SUSE CVE-2012-3495

The physdevgetfreepirq hypercall in arch/x86/physdev.c in Xen 4.1.x and Citrix XenServer 6.0.2 and earlier uses the return value of the getfreepirq function as an array index without checking that the return value indicates an error, which allows guest OS users to cause a denial of service invali...

SUSE CVE-2012-4536

The 1 domainpirqtoemuirq and 2 physdevunmappirq functions in Xen 2.2 allows local guest OS administrators to cause a denial of service Xen crash via a crafted pirq value that triggers an out-of-bounds read...

SUSE CVE-2014-1666

The dophysdevop function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, and 4.3.x does not properly restrict access to the 1 PHYSDEVOPpreparemsix and 2 PHYSDEVOPreleasemsix operations, which allows local PV guests to cause a denial of service host or guest malfunction or possibly gain privileges via...

SUSE CVE-2015-7813

Xen 4.4.x, 4.5.x, and 4.6.x does not limit the number of printk console messages when reporting unimplemented hypercalls, which allows local guests to cause a denial of service via a sequence of 1 HYPERVISORphysdevop hypercalls, which are not properly handled in the dophysdevop function in...

DEBIAN-CVE-2012-4536

The 1 domainpirqtoemuirq and 2 physdevunmappirq functions in Xen 2.2 allows local guest OS administrators to cause a denial of service Xen crash via a crafted pirq value that triggers an out-of-bounds read...