[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2024:4094-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":22,"duplicates":23,"related":24,"reserved_at":9,"published_at":29,"modified_at":30,"state":9,"summary":31,"references_raw":33,"kevs":87,"epss":9,"epss_history":88,"metrics":89,"affected":90},"SUSE-SU-2024:4094-1","Security update for qemu\n\nThis update for qemu fixes the following issues:\n\nSecurity fixes:\n\n- CVE-2024-8354: Fixed assertion failure in usb_ep_get() (bsc#1230834)\n- CVE-2024-8612: Fixed information leak in virtio devices (bsc#1230915)\n\nUpdate version to 8.2.7:\n\nSecurity fixes:\n\n- CVE-2024-7409: Fixed denial of service via improper synchronization in QEMU NBD Server during socket closure (bsc#1229007) \n- CVE-2024-4693: Fixed improper release of configure vector in virtio-pci that lead to guest triggerable crash (bsc#1224132)\n\nOther fixes:\n\n- added missing fix for ppc64 emulation that caused corruption in userspace (bsc#1230140)\n- target/ppc: Fix lxvx/stxvx facility check (bsc#1229929)\n- accel/kvm: check for KVM_CAP_READONLY_MEM on VM (bsc#1231519)\n\nFull changelog here: \n\nhttps://lore.kernel.org/qemu-devel/d9ff276f-f1ba-4e90-8343-a7a0dc2bf305@tls.msk.ru/\n",null,[],[],[],[14,16,18,20],{"_key":15},"CVE-2024-4693",{"_key":17},"CVE-2024-7409",{"_key":19},"CVE-2024-8354",{"_key":21},"CVE-2024-8612",[],[],[25,26,27,28],{"_key":15},{"_key":17},{"_key":19},{"_key":21},"2024-11-28T11:56:42Z","2026-02-04T03:13:45.902536Z",{"cisa_kev":32,"cisa_ransomware":32,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[34,41,46,50,54,58,62,66,70,75,79,83],{"url":35,"sources":36,"tags":39},"https://www.suse.com/support/update/announcement/2024/suse-su-20244094-1/",[37,38],"osv_suse","osv_opensuse",[40],"Advisory",{"url":42,"sources":43,"tags":44},"https://bugzilla.suse.com/1224132",[37,38],[45],"REPORT",{"url":47,"sources":48,"tags":49},"https://bugzilla.suse.com/1229007",[37,38],[45],{"url":51,"sources":52,"tags":53},"https://bugzilla.suse.com/1229929",[37,38],[45],{"url":55,"sources":56,"tags":57},"https://bugzilla.suse.com/1230140",[37,38],[45],{"url":59,"sources":60,"tags":61},"https://bugzilla.suse.com/1230834",[37,38],[45],{"url":63,"sources":64,"tags":65},"https://bugzilla.suse.com/1230915",[37,38],[45],{"url":67,"sources":68,"tags":69},"https://bugzilla.suse.com/1231519",[37,38],[45],{"url":71,"sources":72,"tags":73},"https://www.suse.com/security/cve/CVE-2024-4693",[37,38],[74],"WEB",{"url":76,"sources":77,"tags":78},"https://www.suse.com/security/cve/CVE-2024-7409",[37,38],[74],{"url":80,"sources":81,"tags":82},"https://www.suse.com/security/cve/CVE-2024-8354",[37,38],[74],{"url":84,"sources":85,"tags":86},"https://www.suse.com/security/cve/CVE-2024-8612",[37,38],[74],[],[],[],[91,104,109,115,119,123],{"ecosystem":92,"name":93,"vendor":94,"product":95,"cpe_part":9,"purl_type":96,"purl_namespace":94,"purl_name":95,"source":9,"versions":97},"openSUSE","qemu-linux-user","opensuse","qemu-linux-user&distro=openSUSE Leap 15.6","rpm",[98],{"version":99,"is_range":100,"range_type":101,"version_start":9,"version_start_type":9,"version_end":102,"version_end_type":103,"fixed_in":9},"lt8_2_7_150600_3_20_1",true,"ecosystem","8.2.7-150600.3.20.1","excluding",{"ecosystem":92,"name":105,"vendor":94,"product":106,"cpe_part":9,"purl_type":96,"purl_namespace":94,"purl_name":106,"source":9,"versions":107},"qemu","qemu&distro=openSUSE Leap 15.6",[108],{"version":99,"is_range":100,"range_type":101,"version_start":9,"version_start_type":9,"version_end":102,"version_end_type":103,"fixed_in":9},{"ecosystem":110,"name":93,"vendor":111,"product":112,"cpe_part":9,"purl_type":96,"purl_namespace":111,"purl_name":112,"source":9,"versions":113},"SUSE Linux Enterprise","suse","qemu-linux-user&distro=SUSE Linux Enterprise Module for Package Hub 15 SP6",[114],{"version":99,"is_range":100,"range_type":101,"version_start":9,"version_start_type":9,"version_end":102,"version_end_type":103,"fixed_in":9},{"ecosystem":110,"name":105,"vendor":111,"product":116,"cpe_part":9,"purl_type":96,"purl_namespace":111,"purl_name":116,"source":9,"versions":117},"qemu&distro=SUSE Linux Enterprise Module for Basesystem 15 SP6",[118],{"version":99,"is_range":100,"range_type":101,"version_start":9,"version_start_type":9,"version_end":102,"version_end_type":103,"fixed_in":9},{"ecosystem":110,"name":105,"vendor":111,"product":120,"cpe_part":9,"purl_type":96,"purl_namespace":111,"purl_name":120,"source":9,"versions":121},"qemu&distro=SUSE Linux Enterprise Module for Package Hub 15 SP6",[122],{"version":99,"is_range":100,"range_type":101,"version_start":9,"version_start_type":9,"version_end":102,"version_end_type":103,"fixed_in":9},{"ecosystem":110,"name":105,"vendor":111,"product":124,"cpe_part":9,"purl_type":96,"purl_namespace":111,"purl_name":124,"source":9,"versions":125},"qemu&distro=SUSE Linux Enterprise Module for Server Applications 15 SP6",[126],{"version":99,"is_range":100,"range_type":101,"version_start":9,"version_start_type":9,"version_end":102,"version_end_type":103,"fixed_in":9}]