95 matches found
SUSE-SU-2026:21354-1 Security update for qemu
This update for qemu fixes the following issues: Update to version 10.0.9. Security issues fixed: - CVE-2026-3196: unbounded memory allocation and host denial-of-service via PCMINFO requests sent from the guest bsc1259079. - CVE-2026-3195: heap out-of-bounds write when reading input audio in the...
SUSE-SU-2026:20666-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2025-14876: Fixed unbounded allocation in virtio-crypto. bsc1255400 - CVE-2026-0665: Fixed PIRQ bounds check in xenphysdevmappirq. bsc1256484...
SUSE-SU-2026:0288-1 Security update for qemu
This update for qemu fixes the following issues: Security issues fixed: - CVE-2025-12464: stack-based buffer overflow in the e1000 network device operations can be exploited by a malicious guest user to crash the QEMU process on the host bsc1253002. - CVE-2025-11234: use-after-free in WebSocket...
Security update for qemu
This update for qemu fixes the following issues: Security issues fixed: CVE-2023-1544: out-of-bounds read in VMWare's paravirtual RDMA device operations can be exploited through a malicious guest driver to crash the QEMU process on the host bsc1209554. CVE-2024-6505: heap-based buffer overflow in...
qemu-10.0.3-1.1 on GA media (moderate)
qemu-10.0.3-1.1 on GA media Announcement ID: openSUSE-SU-2025:15437-1 Rating: moderate Cross-References: CVE-2025-54566 CVSS scores: CVE-2025-54566 SUSE : 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L CVE-2025-54566 SUSE : 2 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N...
Security update for qemu
This update for qemu fixes the following issues: CVE-2024-7409: Fixed denial of service via improper synchronization in QEMU NBD Server during socket closure bsc1229007 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
[SECURITY] [DLA 4144-1] qemu security update
Debian LTS Advisory DLA-4144-1 [email protected] https://www.debian.org/lts/security/ Santiago Ruano Rincón April 30, 2025 https://wiki.debian.org/LTS Package : qemu Version : 1:5.2+dfsg-11+deb11u4 CVE ID : CVE-2023-1544 CVE-2023-3019 CVE-2023-5088 CVE-2023-6693 CVE-2024-3447 Debian Bug...
SUSE-SU-2024:4304-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2024-7409: Fixed denial of service via improper synchronization in QEMU NBD Server during socket closure bsc1229007 - CVE-2024-8354: Fixed assertion failure in usbepget in usb bsc1230834 - CVE-2024-8612: Fixed information leak in virtio devic...
OPENSUSE-SU-2024:14411-1 qemu-9.1.0-2.1 on GA media
These are all security issues fixed in the qemu-9.1.0-2.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:13364-1 qemu-8.1.2-1.1 on GA media
These are all security issues fixed in the qemu-8.1.2-1.1 package on the GA media of openSUSE Tumbleweed...
SUSE-SU-2024:1394-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2023-3019: Fixed heap use-after-free in e1000ewritepackettoguest bsc1213269 - CVE-2023-6683: Fixed NULL pointer dereference in qemuclipboardrequest bsc1218889 - CVE-2024-24474: Fixed integer overflow results in buffer overflow via SCSI comman...
SUSE-SU-2024:0589-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2021-3638: hw/display/ati2d: Fix buffer overflow in ati2dblt bsc1188609 - CVE-2023-3180: virtio-crypto: verify src and dst buffer length for sym request bsc1213925 - CVE-2023-3354: io: remove io watch if TLS channel is closed during handshake...
SUSE-SU-2023:4056-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2023-3180: Fixed a buffer overflow in the virtio-crypto device bsc1213925. - CVE-2021-3750: Fixed a DMA reentrancy in the USB EHCI device that could lead to use-after-free bsc1190011. - CVE-2021-3638: Fixed a buffer overflow in the ati-vga...
SUSE-SU-2023:3721-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2022-26354: Fixed a memory leak due to a missing virtqueue detach on error. bsc1198712 - CVE-2021-3929: Fixed an use-after-free in nvme DMA reentrancy issue. bsc1193880 - CVE-2023-0330: Fixed a stack overflow due to a DMA reentrancy issue...
SUSE-SU-2023:3015-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2021-4207: Fixed double fetch in qxlcursor that could lead to heap buffer overflow bsc1198037. - CVE-2023-0330: Fixed DMA reentrancy issue that could lead to stack overflow bsc1207205. - CVE-2023-2861: Fixed improper access control on special...
SUSE-SU-2023:0671-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2022-4144: Fixed qxlphys2virt unsafe address translation that can lead to out-of-bounds read bsc1205808. - CVE-2022-3165: Fixed integer underflow in vncclientcuttextext bsc1203788. - CVE-2022-1050: Fixed use-after-free issue in pvrdmaexeccmd...
SUSE-SU-2022:3660-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2022-0216: Fixed a use after free issue found in hw/scsi/lsi53c895a.c. bsc1198038 - CVE-2022-35414: Fixed an uninitialized read during address translation that leads to a crash. bsc1201367...
SUSE-SU-2022:2254-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2022-26354: Fixed missing virtqueue detach on error can lead to memory leak bsc1198712 - CVE-2021-4207: Fixed double fetch in qxlcursor can lead to heap buffer overflow bsc1198037 - CVE-2021-4206: Fixed integer overflow in cursoralloc can lea...
SUSE-SU-2022:0930-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2022-0358: Fixed a potential privilege escalation via virtiofsd bsc1195161. - CVE-2021-3930: Fixed a potential denial of service in the emulated SCSI device bsc1192525. Non-security fixes: - Fixed a kernel data corruption via a long kernel bo...
qemu security update
15:4.2.1-15.el7 - Document CVE-2021-4158 and CVE-2021-3947 as fixed Mark Kanda Orabug: 33719302 Orabug: 33754145 CVE-2021-3947 CVE-2021-4158 - hw/block/fdc: Kludge missing floppy drive to fix CVE-2021-20196 Philippe Mathieu-Daude Orabug: 32439466 CVE-2021-20196 - hw/block/fdc: Extract...