RHSA-2024:9136MediumCVSS 8.2
Red Hat Security Advisory: qemu-kvm security update
🔗 CVE IDs covered (3)
📋 Description
CVE-2024-3446 — QEMU: virtio: DMA reentrancy issue leads to double free vulnerability CVE-2024-7409 — QEMU: Denial of Service via Improper Synchronization in QEMU NBD Server During Socket Closure CVE-2024-26327 — qemu-kvm: pcie: improper validation of NumVFs leads to buffer overflow
🔗 References (24)
- selfhttps://access.redhat.com/errata/RHSA-2024:9136
- externalhttps://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.5_release_notes/index
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2264844
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2274211
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2302487
- externalhttps://issues.redhat.com/browse/RHEL-17719
- externalhttps://issues.redhat.com/browse/RHEL-21695
- externalhttps://issues.redhat.com/browse/RHEL-24024
- externalhttps://issues.redhat.com/browse/RHEL-28073
- externalhttps://issues.redhat.com/browse/RHEL-28686
- externalhttps://issues.redhat.com/browse/RHEL-28813
- externalhttps://issues.redhat.com/browse/RHEL-30362
- externalhttps://issues.redhat.com/browse/RHEL-33440
- externalhttps://issues.redhat.com/browse/RHEL-33889
- externalhttps://issues.redhat.com/browse/RHEL-34618
- externalhttps://issues.redhat.com/browse/RHEL-34621
- externalhttps://issues.redhat.com/browse/RHEL-34945
- externalhttps://issues.redhat.com/browse/RHEL-36159
- externalhttps://issues.redhat.com/browse/RHEL-38697
- externalhttps://issues.redhat.com/browse/RHEL-40708
- externalhttps://issues.redhat.com/browse/RHEL-42411
- externalhttps://issues.redhat.com/browse/RHEL-50000
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9136.json