Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 547
Alerts This Week
Warning Icon 1 547

Oracle Linux 9 qemu-kvm Low Heap Overflow Fix ELSA-2026-39311

oracle
Calendar Grey July 15, 2026
Oracle Linux Logo Esm H88
Critical Oracle Linux 9 security advisory updates for qemu-kvm addressing a low-level buffer overflow issue. Quick patch included.
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[10.1.0-17.el9_8.4] - kvm-virtio-blk-add-missing-VIRTIO_BLK_T_SCSI_CMD-size-ch.patch [RHEL-184527] - Resolves: RHEL-184527 (CVE-2026-48914 qemu-kvm: Heap buffer overflow in virtio-blk SCSI request handling [rhel-9.8.z])

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates/qemu-kvm-10.1.0-17.el9_8.4.src.rpm

x86_64

qemu-guest-agent-10.1.0-17.el9_8.4.x86_64.rpm qemu-img-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-audio-pa-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-block-blkio-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-block-curl-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-block-rbd-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-common-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-core-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-device-display-virtio-gpu-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-device-display-virtio-gpu-pci-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-device-display-virtio-vga-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-device-usb-host-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-device-usb-redirect-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-docs-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-tools-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-ui-egl-headless-10.1.0-17.el9_8.4.x86_64.rpm qemu-kvm-ui-opengl-10.1.0-17.el9_8.4.x86_64.rpm qemu-pr-helper-10.1.0-17.el9_8.4.x86_64.rpm

aarch64

qemu-guest-agent-10.1.0-17.el9_8.4.aarch64.rpm qemu-img-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-audio-pa-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-block-blkio-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-block-curl-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-block-rbd-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-common-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-core-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-device-display-virtio-gpu-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-device-display-virtio-gpu-pci-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-device-usb-host-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-device-usb-redirect-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-docs-10.1.0-17.el9_8.4.aarch64.rpm qemu-kvm-tools-10.1.0-17.el9_8.4.aarch64.rpm qemu-pr-helper-10.1.0-17.el9_8.4.aarch64.rpm

Severity
low
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2026-48914

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.