Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2026:5578

Опубликовано: 24 мар. 2026
Источник: rocky
Оценка: Moderate

Описание

Moderate: virt:rhel and virt-devel:rhel security update

Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems.

Security Fix(es):

  • qemu-kvm: VNC WebSocket handshake use-after-free (CVE-2025-11234)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
hivexx86_6423.module+el8.10.0+1835+43f01cbbhivex-1.3.18-23.module+el8.10.0+1835+43f01cbb.x86_64.rpm
hivex-develx86_6423.module+el8.10.0+1835+43f01cbbhivex-devel-1.3.18-23.module+el8.10.0+1835+43f01cbb.x86_64.rpm
libguestfsx86_649.module+el8.10.0+1835+43f01cbb.rocky.rockylibguestfs-1.44.0-9.module+el8.10.0+1835+43f01cbb.rocky.rocky.x86_64.rpm
libguestfs-appliancex86_649.module+el8.10.0+1835+43f01cbb.rocky.rockylibguestfs-appliance-1.44.0-9.module+el8.10.0+1835+43f01cbb.rocky.rocky.x86_64.rpm
libguestfs-bash-completionnoarch9.module+el8.10.0+1835+43f01cbb.rocky.rockylibguestfs-bash-completion-1.44.0-9.module+el8.10.0+1835+43f01cbb.rocky.rocky.noarch.rpm
libguestfs-develx86_649.module+el8.10.0+1835+43f01cbb.rocky.rockylibguestfs-devel-1.44.0-9.module+el8.10.0+1835+43f01cbb.rocky.rocky.x86_64.rpm
libguestfs-gfs2x86_649.module+el8.10.0+1835+43f01cbb.rocky.rockylibguestfs-gfs2-1.44.0-9.module+el8.10.0+1835+43f01cbb.rocky.rocky.x86_64.rpm
libguestfs-gobjectx86_649.module+el8.10.0+1835+43f01cbb.rocky.rockylibguestfs-gobject-1.44.0-9.module+el8.10.0+1835+43f01cbb.rocky.rocky.x86_64.rpm
libguestfs-gobject-develx86_649.module+el8.10.0+1835+43f01cbb.rocky.rockylibguestfs-gobject-devel-1.44.0-9.module+el8.10.0+1835+43f01cbb.rocky.rocky.x86_64.rpm
libguestfs-inspect-iconsnoarch9.module+el8.10.0+1835+43f01cbb.rocky.rockylibguestfs-inspect-icons-1.44.0-9.module+el8.10.0+1835+43f01cbb.rocky.rocky.noarch.rpm

Показывать по

Связанные CVE

CVE-2025-11234

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2025-11234

CVSS3: 7.5
ubuntu
6 месяцев назад

A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.

redhat логотип

CVE-2025-11234

CVSS3: 7.5
redhat
6 месяцев назад

A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.

nvd логотип

CVE-2025-11234

CVSS3: 7.5
nvd
6 месяцев назад

A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VNC client authentication.

msrc логотип

CVE-2025-11234

CVSS3: 7.5
msrc
6 месяцев назад

Qemu-kvm: vnc websocket handshake use-after-free

debian логотип

CVE-2025-11234

CVSS3: 7.5
debian
6 месяцев назад

A flaw was found in QEMU. If the QIOChannelWebsock object is freed whi ...