Описание
Security update for qemu
This update for qemu fixes the following issues:
- Update to version 10.0.8
- CVE-2025-14876: Fixed unbounded allocation in virtio-crypto. (bsc#1255400)
- CVE-2026-0665: Fixed PIRQ bounds check in xen_physdev_map_pirq. (bsc#1256484)
Список пакетов
openSUSE Leap 16.0
qemu-10.0.8-160000.1.1
qemu-SLOF-10.0.8-160000.1.1
qemu-accel-qtest-10.0.8-160000.1.1
qemu-arm-10.0.8-160000.1.1
qemu-audio-alsa-10.0.8-160000.1.1
qemu-audio-dbus-10.0.8-160000.1.1
qemu-audio-jack-10.0.8-160000.1.1
qemu-audio-oss-10.0.8-160000.1.1
qemu-audio-pa-10.0.8-160000.1.1
qemu-audio-pipewire-10.0.8-160000.1.1
qemu-audio-spice-10.0.8-160000.1.1
qemu-block-curl-10.0.8-160000.1.1
qemu-block-dmg-10.0.8-160000.1.1
qemu-block-iscsi-10.0.8-160000.1.1
qemu-block-nfs-10.0.8-160000.1.1
qemu-block-rbd-10.0.8-160000.1.1
qemu-block-ssh-10.0.8-160000.1.1
qemu-chardev-baum-10.0.8-160000.1.1
qemu-chardev-spice-10.0.8-160000.1.1
qemu-doc-10.0.8-160000.1.1
qemu-extra-10.0.8-160000.1.1
qemu-guest-agent-10.0.8-160000.1.1
qemu-headless-10.0.8-160000.1.1
qemu-hw-display-qxl-10.0.8-160000.1.1
qemu-hw-display-virtio-gpu-10.0.8-160000.1.1
qemu-hw-display-virtio-gpu-pci-10.0.8-160000.1.1
qemu-hw-display-virtio-vga-10.0.8-160000.1.1
qemu-hw-s390x-virtio-gpu-ccw-10.0.8-160000.1.1
qemu-hw-usb-host-10.0.8-160000.1.1
qemu-hw-usb-redirect-10.0.8-160000.1.1
qemu-hw-usb-smartcard-10.0.8-160000.1.1
qemu-img-10.0.8-160000.1.1
qemu-ipxe-10.0.8-160000.1.1
qemu-ivshmem-tools-10.0.8-160000.1.1
qemu-ksm-10.0.8-160000.1.1
qemu-lang-10.0.8-160000.1.1
qemu-linux-user-10.0.8-160000.1.1
qemu-microvm-10.0.8-160000.1.1
qemu-ppc-10.0.8-160000.1.1
qemu-pr-helper-10.0.8-160000.1.1
qemu-s390x-10.0.8-160000.1.1
qemu-seabios-10.0.81.16.3_3_g3d33c746-160000.1.1
qemu-skiboot-10.0.8-160000.1.1
qemu-spice-10.0.8-160000.1.1
qemu-tools-10.0.8-160000.1.1
qemu-ui-curses-10.0.8-160000.1.1
qemu-ui-dbus-10.0.8-160000.1.1
qemu-ui-gtk-10.0.8-160000.1.1
qemu-ui-opengl-10.0.8-160000.1.1
qemu-ui-spice-app-10.0.8-160000.1.1
qemu-ui-spice-core-10.0.8-160000.1.1
qemu-vgabios-10.0.81.16.3_3_g3d33c746-160000.1.1
qemu-vhost-user-gpu-10.0.8-160000.1.1
qemu-vmsr-helper-10.0.8-160000.1.1
qemu-x86-10.0.8-160000.1.1
Ссылки
- SUSE Security Ratings
- SUSE Bug 1255400
- SUSE Bug 1256484
- SUSE Bug 1257474
- SUSE Bug 1257492
- SUSE CVE CVE-2025-14876 page
- SUSE CVE CVE-2026-0665 page
Описание
A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service (DoS) on the host system by causing the QEMU process to terminate unexpectedly.
Затронутые продукты
openSUSE Leap 16.0:qemu-10.0.8-160000.1.1
openSUSE Leap 16.0:qemu-SLOF-10.0.8-160000.1.1
openSUSE Leap 16.0:qemu-accel-qtest-10.0.8-160000.1.1
openSUSE Leap 16.0:qemu-arm-10.0.8-160000.1.1
Ссылки
- CVE-2025-14876
- SUSE Bug 1255400
Описание
An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process via the emulated Xen physdev hypercall interface, leading to a denial of service or potential memory corruption.
Затронутые продукты
openSUSE Leap 16.0:qemu-10.0.8-160000.1.1
openSUSE Leap 16.0:qemu-SLOF-10.0.8-160000.1.1
openSUSE Leap 16.0:qemu-accel-qtest-10.0.8-160000.1.1
openSUSE Leap 16.0:qemu-arm-10.0.8-160000.1.1
Ссылки
- CVE-2026-0665
- SUSE Bug 1256484