Lucene search
Basic search
Lucene search
Search by product
Subscribe
K
Start 30-day trial
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
SIGN IN
OracleLinux
ELSA-2023-12328
History
May 16, 2023 - 12:00 a.m.
Vulners
/
Oraclelinux
/
qemu-kvm security update
qemu-kvm security update
2023-05-16
00:00:00
linux.oracle.com
17
qemu-kvm
security update
cve-2023-1544
cve-2022-1050
cve-2022-4144
compatibility
virtio-gpu
kvm
ebpf
io_uring
linux headers
vhost-vdpa
0.001 Low
EPSS
Percentile
20.6%
JSON
[6.1.1-6.el9]
Update changelog (Karl Heubaum) [Orabug: 35343538]
ebpf: fix compatibility with libbpf 1.0+ (Shreesh Adiga) [Orabug: 35268538]
ebpf: replace deprecated bpf_program__set_socket_filter (Haochen Tong) [Orabug: 35268538]
CVE-2023-1544 is not applicable to Oracle QEMU 6.1.1 (Karl Heubaum) [Orabug: 35305727] {CVE-2023-1544}
virtio-gpu: do not byteswap padding (Paolo Bonzini) [Orabug: 35304723]
KVM: x86: workaround invalid CPUID[0xD,9] info on some AMD processors (Paolo Bonzini) [Orabug: 35241527]
qemu-kvm.spec: fix Linux io_uring support (Mark Kanda) [Orabug: 35265200]
hw/intc/ioapic: Update KVM routes before redelivering IRQ, on RTE update (David Woodhouse) [Orabug: 35219290]
[6.1.1-5.el9]
hw/pvrdma: Protect against buggy or malicious guest driver (Yuval Shaia) [Orabug: 35064352] {CVE-2022-1050}
hw/display/qxl: Assert memory slot fits in preallocated MemoryRegion (Philippe Mathieu-Daude) [Orabug: 35060182]
hw/display/qxl: Avoid buffer overrun in qxl_phys2virt (CVE-2022-4144) (Philippe Mathieu-Daude) [Orabug: 35060182] {CVE-2022-4144}
hw/display/qxl: Pass requested buffer size to qxl_phys2virt() (Philippe Mathieu-Daude) [Orabug: 35060182]
hw/display/qxl: Document qxl_phys2virt() (Philippe Mathieu-Daude) [Orabug: 35060182]
hw/display/qxl: Have qxl_log_command Return early if no log_cmd handler (Philippe Mathieu-Daude) [Orabug: 35060182]
ui/vnc-clipboard: fix integer underflow in vnc_client_cut_text_ext (Mauro Matteo Cascella) [Orabug: 35060115] {CVE-2022-3165}
hw/arm/virt: build SMBIOS 19 table (Mihai Carabas)
vl: Add an -action option to override MCE handling (Mark Kanda) [Orabug: 34779160]
hw/acpi/erst.c: Fix memory handling issues (Christian A. Ehrhardt) [Orabug: 34779541] {CVE-2022-4172}
target/i386: kvm: do not access uninitialized variable on older kernels (Paolo Bonzini) [Orabug: 34492975]
x86: Support XFD and AMX xsave data migration (Zeng Guang) [Orabug: 34492975]
x86: add support for KVM_CAP_XSAVE2 and AMX state migration (Jing Liu) [Orabug: 34492975]
x86: Add AMX CPUIDs enumeration (Jing Liu) [Orabug: 34492975]
x86: Add XFD faulting bit for state components (Jing Liu) [Orabug: 34492975]
x86: Grant AMX permission for guest (Yang Zhong) [Orabug: 34492975]
x86: Add AMX XTILECFG and XTILEDATA components (Jing Liu) [Orabug: 34492975]
x86: Fix the 64-byte boundary enumeration for extended state (Jing Liu) [Orabug: 34492975]
linux-headers: include missing changes from 5.17 (Paolo Bonzini) [Orabug: 34492975]
linux-headers: Update headers to v5.17-rc1 (Vivek Goyal) [Orabug: 34492975]
linux-headers: update to 5.16-rc1 (Paolo Bonzini) [Orabug: 34492975]
i386/pc: restrict AMD only enforcing of 1Tb hole to new machine type (Joao Martins)
i386/pc: relocate 4g start to 1T where applicable (Joao Martins)
i386/pc: bounds check phys-bits against max used GPA (Joao Martins)
i386/pc: factor out device_memory base/size to helper (Joao Martins)
i386/pc: factor out above-4g end to an helper (Joao Martins)
i386/pc: pass pci_hole64_size to pc_memory_init() (Joao Martins)
i386/pc: create pci-host qdev prior to pc_memory_init() (Joao Martins)
hw/i386: add 4g boundary start to X86MachineState (Joao Martins)
vhost-vdpa: fix assert !virtio_net_get_subqueue(nc)->async_tx.elem in virtio_net_reset (Si-Wei Liu)
net/vhost-vdpa.c: Fix clang compilation failure (Peter Maydell)
vhost-vdpa: allow passing opened vhostfd to vhost-vdpa (Si-Wei Liu)
Affected Package
OS
Version
Architecture
Package
Version
Filename
oracle linux
9
src
qemu-kvm
< 6.1.1-6.el9
qemu-kvm-6.1.1-6.el9.src.rpm
oracle linux
9
aarch64
qemu-guest-agent
< 6.1.1-6.el9
qemu-guest-agent-6.1.1-6.el9.aarch64.rpm
oracle linux
9
aarch64
qemu-img
< 6.1.1-6.el9
qemu-img-6.1.1-6.el9.aarch64.rpm
oracle linux
9
aarch64
qemu-kvm
< 6.1.1-6.el9
qemu-kvm-6.1.1-6.el9.aarch64.rpm
oracle linux
9
aarch64
qemu-kvm-block-curl
< 6.1.1-6.el9
qemu-kvm-block-curl-6.1.1-6.el9.aarch64.rpm
oracle linux
9
aarch64
qemu-kvm-block-iscsi
< 6.1.1-6.el9
qemu-kvm-block-iscsi-6.1.1-6.el9.aarch64.rpm
oracle linux
9
aarch64
qemu-kvm-block-rbd
< 6.1.1-6.el9
qemu-kvm-block-rbd-6.1.1-6.el9.aarch64.rpm
oracle linux
9
aarch64
qemu-kvm-block-ssh
< 6.1.1-6.el9
qemu-kvm-block-ssh-6.1.1-6.el9.aarch64.rpm
oracle linux
9
aarch64
qemu-kvm-common
< 6.1.1-6.el9
qemu-kvm-common-6.1.1-6.el9.aarch64.rpm
oracle linux
9
aarch64
qemu-kvm-core
< 6.1.1-6.el9
qemu-kvm-core-6.1.1-6.el9.aarch64.rpm
Rows per page:
10
1-10 of 22
1
Related
cbl_mariner 1
redos 1
cve 1
osv 3
nessus 8
cvelist 1
redhatcve 1
oraclelinux 1
nvd 1
vulnrichment 1
prion 1
ubuntucve 1
veracode 1
alpinelinux 1
debiancve 1
openvas 3
ubuntu 2
cbl_mariner
cbl_mariner
CVE-2023-1544 affecting package qemu for versions less than 8.2.0-1
2024-03-19 17:21:46
redos
redos
ROS-20240328-07
2024-03-28 00:00:00
cve
cve
CVE-2023-1544
2023-03-23 20:15:14
osv
osv
CVE-2023-1544
2023-03-23 20:15:14
qemu regression
2024-06-06 12:29:55
qemu vulnerabilities
2024-01-08 17:46:08
nessus
nessus
8
Oracle Linux 9 : qemu-kvm (ELSA-2023-12328)
2023-05-17 00:00:00
Oracle Linux 8 : virt:kvm_utils2 (ELSA-2023-12358)
2023-09-07 00:00:00
QEMU < 7.2.4 / < 8.0.3 Multiple Vulnerabilites
2023-08-10 00:00:00
cvelist
cvelist
CVE-2023-1544 Qemu: pvrdma: out-of-bounds read in pvrdma_ring_next_elem_read()
2023-03-23 00:00:00
redhatcve
redhatcve
CVE-2023-1544
2023-03-21 10:13:18
oraclelinux
oraclelinux
virt:kvm_utils2 security update
2023-06-02 00:00:00
nvd
nvd
CVE-2023-1544
2023-03-23 20:15:14
vulnrichment
vulnrichment
CVE-2023-1544 Qemu: pvrdma: out-of-bounds read in pvrdma_ring_next_elem_read()
2023-03-23 00:00:00
prion
prion
Out-of-bounds
2023-03-23 20:15:00
ubuntucve
ubuntucve
CVE-2023-1544
2023-03-23 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-08-06 05:14:18
alpinelinux
alpinelinux
CVE-2023-1544
2023-03-23 20:15:00
debiancve
debiancve
CVE-2023-1544
2023-03-23 20:15:14
openvas
openvas
openSUSE: Security Advisory for qemu (SUSE-SU-2024:1103-1)
2024-04-09 00:00:00
Ubuntu: Security Advisory (USN-6567-2)
2024-06-07 00:00:00
Ubuntu: Security Advisory (USN-6567-1)
2024-01-09 00:00:00
ubuntu
ubuntu
QEMU regression
2024-06-06 00:00:00
QEMU vulnerabilities
2024-01-08 00:00:00
0.001 Low
EPSS
Percentile
20.6%
JSON
Related for ELSA-2023-12328
cbl_mariner
1
redos
1
cve
1
osv
3
nessus
8
cvelist
1
redhatcve
1
oraclelinux
1
nvd
1
vulnrichment
1
prion
1
ubuntucve
1
veracode
1
alpinelinux
1
debiancve
1
openvas
3
ubuntu
2