Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2025:4523-1

Опубликовано: 26 дек. 2025
Источник: suse-cvrf

Описание

Security update for qemu

This update for qemu fixes the following issues:

  • CVE-2023-1544: pvrdma: Fixed out-of-bounds read in pvrdma_ring_next_elem_read() (bsc#1209554)

Список пакетов

SUSE Linux Enterprise Server 12 SP5-LTSS
qemu-3.1.1.1-81.1
qemu-arm-3.1.1.1-81.1
qemu-audio-alsa-3.1.1.1-81.1
qemu-audio-oss-3.1.1.1-81.1
qemu-audio-pa-3.1.1.1-81.1
qemu-audio-sdl-3.1.1.1-81.1
qemu-block-curl-3.1.1.1-81.1
qemu-block-iscsi-3.1.1.1-81.1
qemu-block-rbd-3.1.1.1-81.1
qemu-block-ssh-3.1.1.1-81.1
qemu-guest-agent-3.1.1.1-81.1
qemu-ipxe-1.0.0+-81.1
qemu-kvm-3.1.1.1-81.1
qemu-lang-3.1.1.1-81.1
qemu-ppc-3.1.1.1-81.1
qemu-s390-3.1.1.1-81.1
qemu-seabios-1.12.0_0_ga698c89-81.1
qemu-sgabios-8-81.1
qemu-tools-3.1.1.1-81.1
qemu-ui-curses-3.1.1.1-81.1
qemu-ui-gtk-3.1.1.1-81.1
qemu-ui-sdl-3.1.1.1-81.1
qemu-vgabios-1.12.0_0_ga698c89-81.1
qemu-x86-3.1.1.1-81.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
qemu-3.1.1.1-81.1
qemu-audio-alsa-3.1.1.1-81.1
qemu-audio-oss-3.1.1.1-81.1
qemu-audio-pa-3.1.1.1-81.1
qemu-audio-sdl-3.1.1.1-81.1
qemu-block-curl-3.1.1.1-81.1
qemu-block-iscsi-3.1.1.1-81.1
qemu-block-rbd-3.1.1.1-81.1
qemu-block-ssh-3.1.1.1-81.1
qemu-guest-agent-3.1.1.1-81.1
qemu-ipxe-1.0.0+-81.1
qemu-kvm-3.1.1.1-81.1
qemu-lang-3.1.1.1-81.1
qemu-seabios-1.12.0_0_ga698c89-81.1
qemu-sgabios-8-81.1
qemu-tools-3.1.1.1-81.1
qemu-ui-curses-3.1.1.1-81.1
qemu-ui-gtk-3.1.1.1-81.1
qemu-ui-sdl-3.1.1.1-81.1
qemu-vgabios-1.12.0_0_ga698c89-81.1
qemu-x86-3.1.1.1-81.1

Ссылки

Описание

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5-LTSS:qemu-3.1.1.1-81.1
SUSE Linux Enterprise Server 12 SP5-LTSS:qemu-arm-3.1.1.1-81.1
SUSE Linux Enterprise Server 12 SP5-LTSS:qemu-audio-alsa-3.1.1.1-81.1
SUSE Linux Enterprise Server 12 SP5-LTSS:qemu-audio-oss-3.1.1.1-81.1
Ссылки