SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3948

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3948

Security update for qemu

Type: security

Severity: important

Issued: 2024-11-08

Description:

This update for qemu fixes the following issues:

- CVE-2024-8354: Fixed assertion failure in usb_ep_get() (bsc#1230834).
- CVE-2024-8612: Fixed nformation leak in virtio devices (bsc#1230915).
- CVE-2024-7409: Fixed denial of service via improper synchronization in QEMU NBD Server during socket closure (bsc#1229007).

References

Packages

qemu-7.1.0-150500.49.24.1