RockyLinux 9 : qemu-kvm (RLSA-2025:4492)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:4492 advisory. QEMU: virtio-net: stack buffer overflow in virtionetflushtx CVE-2023-6693 qemu-kvm: net: assertion failure in updatesctpchecksum CVE-2024-3567 Tenable ha...

MGASA-2024-0047 Updated xen, qemu and libvirt packages fix security vulnerabilities

This update fixes several security issues and also improves stability...

MGASA-2015-0397 Updated qemu packages fixes security vulnerabilities

Qinghao Tang of QIHU 360 Inc. discovered an infinite loop issue in the NE2000 NIC emulation. A privileged guest user could use this flaw to mount a denial of service QEMU process crash. CVE-2015-5278 Qinghao Tang of QIHU 360 Inc. discovered a heap buffer overflow flaw in the NE2000 NIC emulation....

DSA-3361-1 qemu - security update

Bulletin has no description...

Updated qemu packages fix CVE-2015-3456

Updated qemu packages fix security vulnerability: An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller FDC handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially,...

MGASA-2014-0525 Updated qemu packages fix security vulnerabilities

Updated qemu packages fix security vulnerabilities: During migration, the values read from migration stream during ram load are not validated. Especially offset in hostfromstreamoffset and also the length of the writes in the callers of the said function. A user able to alter the savevm data eith...

MGASA-2014-0467 Updated qemu packages fix security vulnerabilities

The Advanced Threat Research team at Intel Security reported that guest provided parameter were insufficiently validated in rectangle functions in the vmware-vga driver. A privileged guest user could use this flaw to write into qemu address space on the host, potentially escalating their privileg...