Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2026:0832-1

Опубликовано: 05 мар. 2026
Источник: suse-cvrf

Описание

Security update for qemu

This update for qemu fixes the following issues:

Security issue:

  • CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto (bsc#1255400).

Non security issues:

    • hw/virtio: Also include md stubs in case CONFIG_VIRTIO_PCI is not set (jsc#PED-14271).
    • s390x/pv: prepare for memory devices (jsc#PED-14271).
    • s390x/s390-skeys: prepare for memory devices (jsc#PED-14271).
    • s390x/s390-stattrib-kvm: prepare for memory devices and sparse memory layouts (jsc#PED-14271).
    • s390x/s390-virtio-ccw: prepare for memory devices (jsc#PED-14271).
    • s390x/virtio-ccw: add support for virtio based memory devices (jsc#PED-14271).
    • s390x: remember the maximum page size (jsc#PED-14271).
    • s390x: virtio-mem support (jsc#PED-14271).

Список пакетов

Image SLES15-SP7-EC2-ECS-HVM
qemu-img-9.2.4-150700.3.17.1
qemu-pr-helper-9.2.4-150700.3.17.1
qemu-tools-9.2.4-150700.3.17.1
qemu-vmsr-helper-9.2.4-150700.3.17.1
SUSE Linux Enterprise Module for Basesystem 15 SP7
qemu-img-9.2.4-150700.3.17.1
qemu-pr-helper-9.2.4-150700.3.17.1
qemu-tools-9.2.4-150700.3.17.1
qemu-vmsr-helper-9.2.4-150700.3.17.1
SUSE Linux Enterprise Module for Package Hub 15 SP7
qemu-SLOF-9.2.4-150700.3.17.1
qemu-accel-qtest-9.2.4-150700.3.17.1
qemu-arm-9.2.4-150700.3.17.1
qemu-audio-jack-9.2.4-150700.3.17.1
qemu-audio-oss-9.2.4-150700.3.17.1
qemu-block-dmg-9.2.4-150700.3.17.1
qemu-extra-9.2.4-150700.3.17.1
qemu-hw-s390x-virtio-gpu-ccw-9.2.4-150700.3.17.1
qemu-hw-usb-smartcard-9.2.4-150700.3.17.1
qemu-ivshmem-tools-9.2.4-150700.3.17.1
qemu-linux-user-9.2.4-150700.3.17.1
qemu-microvm-9.2.4-150700.3.17.1
qemu-ppc-9.2.4-150700.3.17.1
qemu-s390x-9.2.4-150700.3.17.1
qemu-skiboot-9.2.4-150700.3.17.1
qemu-vhost-user-gpu-9.2.4-150700.3.17.1
SUSE Linux Enterprise Module for Server Applications 15 SP7
qemu-9.2.4-150700.3.17.1
qemu-SLOF-9.2.4-150700.3.17.1
qemu-accel-tcg-x86-9.2.4-150700.3.17.1
qemu-arm-9.2.4-150700.3.17.1
qemu-audio-alsa-9.2.4-150700.3.17.1
qemu-audio-dbus-9.2.4-150700.3.17.1
qemu-audio-pa-9.2.4-150700.3.17.1
qemu-audio-pipewire-9.2.4-150700.3.17.1
qemu-audio-spice-9.2.4-150700.3.17.1
qemu-block-curl-9.2.4-150700.3.17.1
qemu-block-iscsi-9.2.4-150700.3.17.1
qemu-block-nfs-9.2.4-150700.3.17.1
qemu-block-rbd-9.2.4-150700.3.17.1
qemu-block-ssh-9.2.4-150700.3.17.1
qemu-chardev-baum-9.2.4-150700.3.17.1
qemu-chardev-spice-9.2.4-150700.3.17.1
qemu-guest-agent-9.2.4-150700.3.17.1
qemu-headless-9.2.4-150700.3.17.1
qemu-hw-display-qxl-9.2.4-150700.3.17.1
qemu-hw-display-virtio-gpu-9.2.4-150700.3.17.1
qemu-hw-display-virtio-gpu-pci-9.2.4-150700.3.17.1
qemu-hw-display-virtio-vga-9.2.4-150700.3.17.1
qemu-hw-s390x-virtio-gpu-ccw-9.2.4-150700.3.17.1
qemu-hw-usb-host-9.2.4-150700.3.17.1
qemu-hw-usb-redirect-9.2.4-150700.3.17.1
qemu-ipxe-9.2.4-150700.3.17.1
qemu-ksm-9.2.4-150700.3.17.1
qemu-lang-9.2.4-150700.3.17.1
qemu-ppc-9.2.4-150700.3.17.1
qemu-s390x-9.2.4-150700.3.17.1
qemu-seabios-9.2.41.16.3_3_g3d33c746-150700.3.17.1
qemu-skiboot-9.2.4-150700.3.17.1
qemu-spice-9.2.4-150700.3.17.1
qemu-ui-curses-9.2.4-150700.3.17.1
qemu-ui-dbus-9.2.4-150700.3.17.1
qemu-ui-gtk-9.2.4-150700.3.17.1
qemu-ui-opengl-9.2.4-150700.3.17.1
qemu-ui-spice-app-9.2.4-150700.3.17.1
qemu-ui-spice-core-9.2.4-150700.3.17.1
qemu-vgabios-9.2.41.16.3_3_g3d33c746-150700.3.17.1
qemu-x86-9.2.4-150700.3.17.1

Ссылки

Описание

A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service (DoS) on the host system by causing the QEMU process to terminate unexpectedly.

Затронутые продукты
Image SLES15-SP7-EC2-ECS-HVM:qemu-img-9.2.4-150700.3.17.1
Image SLES15-SP7-EC2-ECS-HVM:qemu-pr-helper-9.2.4-150700.3.17.1
Image SLES15-SP7-EC2-ECS-HVM:qemu-tools-9.2.4-150700.3.17.1
Image SLES15-SP7-EC2-ECS-HVM:qemu-vmsr-helper-9.2.4-150700.3.17.1
Ссылки