Описание
Security update for qemu
This update for qemu fixes the following issue:
- CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto (bsc#1255400).
Список пакетов
Container suse/sle-micro/kvm-5.5:latest
qemu-guest-agent-7.1.0-150500.49.39.2
SUSE Linux Enterprise Micro 5.5
qemu-7.1.0-150500.49.39.2
qemu-SLOF-7.1.0-150500.49.39.2
qemu-accel-tcg-x86-7.1.0-150500.49.39.2
qemu-arm-7.1.0-150500.49.39.2
qemu-audio-spice-7.1.0-150500.49.39.2
qemu-block-curl-7.1.0-150500.49.39.2
qemu-chardev-spice-7.1.0-150500.49.39.2
qemu-guest-agent-7.1.0-150500.49.39.2
qemu-hw-display-qxl-7.1.0-150500.49.39.2
qemu-hw-display-virtio-gpu-7.1.0-150500.49.39.2
qemu-hw-display-virtio-gpu-pci-7.1.0-150500.49.39.2
qemu-hw-display-virtio-vga-7.1.0-150500.49.39.2
qemu-hw-usb-redirect-7.1.0-150500.49.39.2
qemu-ipxe-1.0.0+-150500.49.39.2
qemu-ppc-7.1.0-150500.49.39.2
qemu-s390x-7.1.0-150500.49.39.2
qemu-seabios-1.16.0_0_gd239552-150500.49.39.2
qemu-sgabios-8-150500.49.39.2
qemu-tools-7.1.0-150500.49.39.2
qemu-ui-opengl-7.1.0-150500.49.39.2
qemu-ui-spice-core-7.1.0-150500.49.39.2
qemu-vgabios-1.16.0_0_gd239552-150500.49.39.2
qemu-x86-7.1.0-150500.49.39.2
SUSE Linux Enterprise Module for Server Applications 15 SP7
qemu-sgabios-8-150500.49.39.2
Ссылки
- Link for SUSE-SU-2026:0889-1
- E-Mail link for SUSE-SU-2026:0889-1
- SUSE Security Ratings
- SUSE Bug 1255400
- SUSE CVE CVE-2025-14876 page
Описание
A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service (DoS) on the host system by causing the QEMU process to terminate unexpectedly.
Затронутые продукты
Container suse/sle-micro/kvm-5.5:latest:qemu-guest-agent-7.1.0-150500.49.39.2
SUSE Linux Enterprise Micro 5.5:qemu-7.1.0-150500.49.39.2
SUSE Linux Enterprise Micro 5.5:qemu-SLOF-7.1.0-150500.49.39.2
SUSE Linux Enterprise Micro 5.5:qemu-accel-tcg-x86-7.1.0-150500.49.39.2
Ссылки
- CVE-2025-14876
- SUSE Bug 1255400