SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1103

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1103

Security update for qemu

Type: security

Severity: important

Issued: 2024-04-03

Description:

This update for qemu fixes the following issues:

- CVE-2024-26327: Fixed buffer overflow via invalid SR/IOV NumVFs value (bsc#1220062).
- CVE-2024-24474: Fixed integer overflow results in buffer overflow via SCSI command (bsc#1220134).
- CVE-2023-6693: Fixed stack buffer overflow in virtio_net_flush_tx() (bsc#1218484).
- CVE-2023-1544: Fixed out-of-bounds read in pvrdma_ring_next_elem_read() (bsc#1209554).
- CVE-2024-26328: Fixed invalid NumVFs value handled in NVME SR/IOV implementation (bsc#1220065).

The following non-security bug was fixed:

- Removing in-use mediated device should fail with error message instead of hang (bsc#1205316).

References

jira: PED-8113 https://jira.suse.com/browse/PED-8113
jira: PED-7366 https://jira.suse.com/browse/PED-7366
CVE: CVE-2024-26328
CVE: CVE-2024-26327
CVE: CVE-2024-24474
CVE: CVE-2023-6693
CVE: CVE-2023-1544
Bugzilla: 1220134 VUL-0: CVE-2024-24474: qemu: integer overflow results in buffer overflow via SCSI command
Bugzilla: 1220065 VUL-0: CVE-2024-26328: qemu: invalid NumVFs value is mishandled in NVME SR/IOV implementation
Bugzilla: 1220062 VUL-0: CVE-2024-26327: qemu: buffer overflow via invalid SR/IOV NumVFs value
Bugzilla: 1218484 VUL-0: CVE-2023-6693: qemu: stack buffer overflow in virtio_net_flush_tx()
Bugzilla: 1209554 VUL-0: CVE-2023-1544: kvm,qemu: pvrdma: out-of-bounds read in pvrdma_ring_next_elem_read()
Bugzilla: 1205316 SLES 15 SP3 - Removing in-use mediated device should fail with error message instead of hang

Packages

qemu-7.1.0-150500.49.12.1