SUSE-SU-2025:20076-1
Vulnerability Summary
Timeline
Description
Security update for qemu This update for qemu fixes the following issues: - Bugfixes and CVEs: * hw/usb/hcd-ohci: Fix #1510, #303: pid not IN or OUT (bsc#1230834, CVE-2024-8354) * softmmu: Support concurrent bounce buffers (bsc#1230915, CVE-2024-8612) * system/physmem: Per-AddressSpace bounce buffering (bsc#1230915, CVE-2024-8612) * system/physmem: Propagate AddressSpace to MapClient helpers (bsc#1230915, CVE-2024-8612) * system/physmem: Replace qemu_mutex_lock() calls with QEMU_LOCK_GUARD (bsc#1230915, CVE-2024-8612) - Update version to 8.2.7 * Full changelog here: https://lore.kernel.org/qemu-devel/d9ff276f-f1ba-4e90-8343-a7a0dc2bf305@tls.msk.ru/ * Fixes: bsc#1229007, CVE-2024-7409 bsc#1224132, CVE-2024-4693 * Some backports: gitlab: fix logic for changing docker tag on stable branches ui/sdl2: set swap interval explicitly when OpenGL is enabled hw/intc/arm_gic: fix spurious level triggered interrupts hw/audio/virtio-sound: fix heap buffer overflow tests/docker: update debian i686 and mipsel images to bookworm tests/docker: remove debian-armel-cross hw/display/vhost-user-gpu.c: fix vhost_user_gpu_chr_read() crypto: check gnutls & gcrypt support the requested pbkdf hash crypto: run qcrypto_pbkdf2_count_iters in a new thread softmmu/physmem: fix memory leak in dirty_memory_extend() target/ppc: Fix migration of CPUs with TLB_EMB TLB type gitlab: migrate the s390x custom machine to 22.04 target/hppa: Fix PSW V-bit packaging in cpu_hppa_get for hppa64 hw/audio/virtio-snd: fix invalid param check virtio-pci: Fix the use of an uninitialized irqfd - Fix bsc#1231519: * accel/kvm: check for KVM_CAP_READONLY_MEM on VM (bsc#1231519)
Affected Systems
- suse•qemu&distro=SUSE Linux Micro 6.0
< 8.2.7-1.1
References (12)
- https://www.suse.com/support/update/announcement/2025/suse-su-202520076-1/
- https://bugzilla.suse.com/1224132
- https://bugzilla.suse.com/1229007
- https://bugzilla.suse.com/1229929
- https://bugzilla.suse.com/1230140
- https://bugzilla.suse.com/1230834
- https://bugzilla.suse.com/1230915
- https://bugzilla.suse.com/1231519
- https://www.suse.com/security/cve/CVE-2024-4693
- https://www.suse.com/security/cve/CVE-2024-7409
- https://www.suse.com/security/cve/CVE-2024-8354
- https://www.suse.com/security/cve/CVE-2024-8612