SUSE-SU-2026:0043-1

Advisory lineage Upstream: 3 Downstream: 0
Published: 06 Jan 2026, 16:03
Last modified:04 Feb 2026, 03:05

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

06 Jan 2026, 16:03
Published
Vulnerability first disclosed
04 Feb 2026, 03:05
Last Modified
Vulnerability information updated

Description

Security update for qemu This update for qemu fixes the following issues: Security issues fixed: - CVE-2023-1544: out-of-bounds read in VMWare's paravirtual RDMA device operations can be exploited through a malicious guest driver to crash the QEMU process on the host (bsc#1209554). - CVE-2024-6505: heap-based buffer overflow in the virtio-net device operations can be exploited by a malicious privileged user to crash the QEMU process on the host (bsc#1227397). - CVE-2025-12464: stack-based buffer overflow in the e1000 network device operations can be exploited by a malicious guest user to crash the QEMU process on the host (bsc#1253002). Other updates and bugfixes: - [openSUSE][RPM] spec: require qemu-hw-display-virtio-gpu-pci for x86 too. - [openSUSE][RPM} spec: delete old specfile constructs. - block/curl: fix curl internal handles handling (bsc#1252768). - [openSUSE][RPM]: really fix *-virtio-gpu-pci dependency on ARM (bsc#1254286).

Affected Systems

  • suseqemu&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

    < 6.2.0-150400.37.46.1

  • suseqemu&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

    < 6.2.0-150400.37.46.1

  • suseqemu&distro=SUSE Linux Enterprise Micro 5.3

    < 6.2.0-150400.37.46.1

  • suseqemu&distro=SUSE Linux Enterprise Micro 5.4

    < 6.2.0-150400.37.46.1

  • suseqemu&distro=SUSE Linux Enterprise Server 15 SP4-LTSS

    < 6.2.0-150400.37.46.1

  • suseqemu&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4

    < 6.2.0-150400.37.46.1

  • suseqemu&distro=SUSE Manager Proxy LTS 4.3

    < 6.2.0-150400.37.46.1

  • suseqemu&distro=SUSE Manager Server LTS 4.3

    < 6.2.0-150400.37.46.1

References (9)