RHSA-2024:2962MediumCVSS 6.5
Red Hat Security Advisory: virt:rhel and virt-devel:rhel security and enhancement update
🔗 CVE IDs covered (4)
📋 Description
CVE-2023-3255 — QEMU: VNC: infinite loop in inflate_buffer() leads to denial of service CVE-2023-5088 — QEMU: improper IDE controller reset can lead to MBR overwrite CVE-2023-6683 — QEMU: VNC: NULL pointer dereference in qemu_clipboard_request() CVE-2023-6693 — QEMU: virtio-net: stack buffer overflow in virtio_net_flush_tx()
🔗 References (13)
- selfhttps://access.redhat.com/errata/RHSA-2024:2962
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.10_release_notes/index
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2218486
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2247283
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2254580
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2254825
- externalhttps://issues.redhat.com/browse/RHEL-18214
- externalhttps://issues.redhat.com/browse/RHEL-20189
- externalhttps://issues.redhat.com/browse/RHEL-2600
- externalhttps://issues.redhat.com/browse/RHEL-3709
- externalhttps://issues.redhat.com/browse/RHEL-7353
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_2962.json