Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 39: FEDORA-2024-d702394225 Critical: QEMU Memory Corruption

fedora
Calendar Grey February 20, 2024
Dist Fedora Esm H88
A severe buffer overflow vulnerability in QEMU's virtio_net_flush_tx has been patched in the recent Fedora release. Find out how to apply the latest updates.
Stack buffer overflow in virtio_net_flush_tx (CVE-2023-6693) (rhbz#2256436)

Summary

qemu is an open source virtualizer that provides hardware

emulation for the KVM hypervisor. qemu acts as a virtual

machine monitor together with the KVM kernel modules, and emulates the

hardware for a full system such as a PC and its associated peripherals.

Update Information:

Stack buffer overflow in virtio_net_flush_tx (CVE-2023-6693) (rhbz#2256436)

Topics%20covered

Topics Covered

security advisory buffer overflow critical software update Fedora qemu virtio-net

Change Log

* Tue Feb 13 2024 Mauro Matteo Cascella - 2:8.1.3-3 - Stack buffer overflow in virtio_net_flush_tx (CVE-2023-6693) (rhbz#2256436)

References


[ 1 ] Bug #2256436 - CVE-2023-6693 qemu: virtio-net: stack buffer overflow in virtio_net_flush_tx() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2256436

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-c601293124' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: qemu
Product: Fedora 39
Version: 8.1.3
Release: 3.fc39
URL: https://www.qemu.org/
Summary: QEMU is a FAST! processor emulator

Topics%20covered

Topics Covered

security advisory buffer overflow critical software update Fedora qemu virtio-net

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here