Alerts This Week
Warning Icon 1 967
Alerts This Week
Warning Icon 1 967

Mageia 9: 2024-0387 moderate: qemu DoS and overflow threats

mageia
Calendar Grey December 4, 2024
Dist Mageia Esm H88
Recent Mageia notification regarding qemu addresses several vulnerabilities that could impact the efficiency and security of virtual machines.
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device

Summary

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU. (CVE-2023-1544) A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. (CVE-2023-3019) A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib buffer in the `inflate_buffer` function. This could allow a remote authenticated client who is able to send a clipboard to the VNC server to trigger a denial of service. (CVE-2023-3255) A bug in QEMU could cause a guest I/O operation otherwise addre...

References

- https://bugs.mageia.org/show_bug.cgi?id=33074

-

- https://lists.suse.com/pipermail/sle-updates/2024-April/035064.html

- https://lwn.net/Articles/971720/

- https://lists.suse.com/pipermail/sle-updates/2024-August/036644.html

-

- https://www.cve.org/CVERecord?id=CVE-2023-1544

- https://www.cve.org/CVERecord?id=CVE-2023-3019

- https://www.cve.org/CVERecord?id=CVE-2023-3255

- https://www.cve.org/CVERecord?id=CVE-2023-5088

- https://www.cve.org/CVERecord?id=CVE-2023-6683

- https://www.cve.org/CVERecord?id=CVE-2023-6693

- https://www.cve.org/CVERecord?id=CVE-2023-42467

- https://www.cve.org/CVERecord?id=CVE-2024-24474

- https://www.cve.org/CVERecord?id=CVE-2024-26327

- https://www.cve.org/CVERecord?id=CVE-2024-26328

- https://www.cve.org/CVERecord?id=CVE-2024-3446

- https://www.cve.org/CVERecord?id=CVE-2024-3447

- https://www.cve.org/CVERecord?id=CVE-2024-4467

- https://www.cve.org/CVERecord?id=CVE-2024-7409

- https://www.cve.org/CVERecord?id=CVE-2024-8354

- https://www.cve.org/CVERecord?id=CVE-2024-8612

Topics%20covered

Topics Covered

security advisory buffer overflow DoS memory leak qemu Mageia

Resolution

SRPMS

- 9/core/qemu-7.2.15-1.mga9

Publication date: 04 Dec 2024
URL: https://advisories.mageia.org/MGASA-2024-0387.html
Type: security
CVE: CVE-2023-1544, CVE-2023-3019, CVE-2023-3255, CVE-2023-5088, CVE-2023-6683, CVE-2023-6693, CVE-2023-42467, CVE-2024-24474, CVE-2024-26327, CVE-2024-26328, CVE-2024-3446, CVE-2024-3447, CVE-2024-4467, CVE-2024-7409, CVE-2024-8354, CVE-2024-8612

Topics%20covered

Topics Covered

security advisory buffer overflow DoS memory leak qemu Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here