RHSA-2024:2135 -- Redhat qemu-kvm, qemu-guest-agent, qemu-img, qemu-pr-helperID: oval:org.secpod.oval:def:509238 | Date: (C)2024-05-24 (M)2024-05-29 |
Class: PATCH | Family: unix |
Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fix: QEMU: e1000e: heap use-after-free in e1000e_write_packet_to_guest QEMU: VNC: infinite loop in inflate_buffer leads to denial of service QEMU: improper IDE controller reset can lead to MBR overwrite QEMU: VNC: NULL pointer dereference in qemu_clipboard_request QEMU: am53c974: denial of service due to division by zero For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.4 Release Notes linked from the References section.
Platform: |
Red Hat Enterprise Linux 9 |
Product: |
qemu-kvm |
qemu-guest-agent |
qemu-img |
qemu-pr-helper |