SUSE-IU-2024:1692-1: Security update of suse/sle-micro/kvm-5.5
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Sat Nov 9 08:02:36 UTC 2024
SUSE Image Update Advisory: suse/sle-micro/kvm-5.5
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2024:1692-1
Image Tags : suse/sle-micro/kvm-5.5:2.0.4 , suse/sle-micro/kvm-5.5:2.0.4-3.5.221 , suse/sle-micro/kvm-5.5:latest
Image Release : 3.5.221
Severity : important
Type : security
References : 1229007 1230834 1230915 CVE-2024-7409 CVE-2024-8354 CVE-2024-8612
-----------------------------------------------------------------
The container suse/sle-micro/kvm-5.5 was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3948-1
Released: Fri Nov 8 08:28:33 2024
Summary: Security update for qemu
Type: security
Severity: important
References: 1229007,1230834,1230915,CVE-2024-7409,CVE-2024-8354,CVE-2024-8612
This update for qemu fixes the following issues:
- CVE-2024-8354: Fixed assertion failure in usb_ep_get() (bsc#1230834).
- CVE-2024-8612: Fixed nformation leak in virtio devices (bsc#1230915).
- CVE-2024-7409: Fixed denial of service via improper synchronization in QEMU NBD Server during socket closure (bsc#1229007).
The following package changes have been done:
- qemu-guest-agent-7.1.0-150500.49.24.1 updated
- container:suse-sle-micro-base-5.5-latest-2.0.4-5.8.114 updated
More information about the sle-container-updates
mailing list