SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-589

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-589

Security update for qemu

Type: security

Severity: important

Issued: 2024-02-22

Description:

This update for qemu fixes the following issues:

- CVE-2021-3638: hw/display/ati_2d: Fix buffer overflow in ati_2d_blt (bsc#1188609)
- CVE-2023-3180: virtio-crypto: verify src and dst buffer length for sym request (bsc#1213925)
- CVE-2023-3354: io: remove io watch if TLS channel is closed during handshake (bsc#1212850)
- [openSUSE] roms/ipxe: Backport 0aa2e4ec9635, in preparation of binutils 2.41 (bsc#1215311)
- target/s390x: Fix the "ignored match" case in VSTRS (bsc#1213210)
- linux-user/elfload: Enable vxe2 on s390x (bsc#1213210)

References

CVE: CVE-2023-3354
CVE: CVE-2023-3180
CVE: CVE-2021-3638
Bugzilla: 1215311 qemu will stop compiling when binutils update is released (toolchain update 2023)
Bugzilla: 1213925 VUL-0: CVE-2023-3180: qemu,kvm: virtio-crypto: heap buffer overflow in virtio_crypto_sym_op_helper()
Bugzilla: 1213210 User process fault: interruption code 0011 ilc:2 in libc.so.6
Bugzilla: 1212850 VUL-0: CVE-2023-3354: qemu,kvm: improper I/O watch removal in VNC TLS handshake can lead to remote unauthenticated denial of service
Bugzilla: 1188609 VUL-1: CVE-2021-3638: qemu: ati-vga: inconsistent check in ati_2d_blt() may lead to out-of-bounds write

Packages

qemu-7.1.0-150500.49.9.2