SUSE-SU-2024:1099-1 -- SLES libvirt| ID: oval:org.secpod.oval:def:89051727 | Date: (C)2024-04-26 (M)2024-04-29 |
| Class: PATCH | Family: unix |
This update for libvirt fixes the following issues: * CVE-2024-2494: Add a check for negative array lengths before allocation to prevent potential DoS. * CVE-2024-2496: Fixed NULL pointer dereference in udevConnectListAllInterfaces . * CVE-2024-1441: Fix off-by-one error in udevListInterfacesByStatus * qemu: domain: Fix logic when tainting domain * conf: Remove some firmware validation checks * libxl: Fix connection to modular network daemon
| Platform: |
| SUSE Linux Enterprise Desktop 15 SP5 |
| SUSE Linux Enterprise Server 15 SP5 |
