SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2385

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2385

Security update for qemu

Type: security

Severity: important

Issued: 2026-06-12

Description:

This update for qemu fixes the following issues:

- CVE-2026-2243: incorrect bounds check leads to heap out-of-bounds read and a 12-byte information leak when processing
  specially crafted VMDK files (bsc#1258509).
- CVE-2026-3195: heap buffer overflow when reading input audio in the virtio-snd device input callback due to
  insufficient checks in `virtio_snd_pcm_in_cb` (bsc#1259080).
- CVE-2026-3196: integer overflow in the virtio-snd device via PCM_INFO requests from the guest leads to unbounded
  memory allocation and host denial-of-service (bsc#1259079).
- CVE-2026-3842: hyperv/syndbg: missing mapped-length guard after cpu_physical_memory_map causes host OOB write
  (bsc#1262089).

References

CVE: CVE-2026-3842
CVE: CVE-2026-3196
CVE: CVE-2026-3195
CVE: CVE-2026-2243
Bugzilla: 1262089 VUL-0: CVE-2026-3842: qemu: hyperv/syndbg: missing mapped-length guard after cpu_physical_memory_map causes host OOB write
Bugzilla: 1259080 VUL-0: CVE-2026-3195: qemu: heap buffer overflow when reading input audio in the virtio-snd device input callback due to insufficient checks in `virtio_snd_pcm_in_cb`
Bugzilla: 1259079 VUL-0: CVE-2026-3196: qemu: integer overflow in the virtio-snd device via PCM_INFO requests from the guest leads to unbounded memory allocation and host denial-of-service
Bugzilla: 1258509 VUL-0: CVE-2026-2243: qemu: incorrect bounds check leads to heap out-of-bounds read and a 12-byte information leak when processing specially crafted VMDK files
Bugzilla: 1199023 SLES 15 SP3 RC1 - Guest agent does not start automatically after installation (on s390x) (kvm)

Packages

qemu-9.2.4-150700.3.20.1

qemu-linux-user-9.2.4-150700.3.20.1