ESSA-2025:3052: Moderate: SUSE Liberty Linux Moderate: virt:rhel and virt-devel:rhel security update

Update Advisories for SUSE Liberty Linux suse-liberty-linux-updates at lists.suse.com
Wed Aug 6 15:07:07 UTC 2025 

# Moderate: virt:rhel and virt-devel:rhel security update

Announcement ID: ESSA-2025:3052
Rating: Moderate

Cross-References:

  * CVE-2025-49133



CVSS scores:

  * CVE-2025-49133 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H

Affected Products:

  * SUSE Liberty Linux 8


An update that solves one vulnerability can now be installed.

## Description:

Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems.Security Fix(es): libtpms: Libtpms Out-of-Bounds Read Vulnerability (CVE-2025-49133) 
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

## Package List:

  * SUSE Liberty Linux 8:
    * hivex 1.3.18-23.module+el8.9.0+18724+20190c23
    * hivex-devel 1.3.18-23.module+el8.9.0+18724+20190c23
    * libguestfs 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-appliance 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-bash-completion 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-devel 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-gfs2 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-gobject 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-gobject-devel 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-inspect-icons 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-java 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-java-devel 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-javadoc 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-man-pages-ja 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-man-pages-uk 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-rescue 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-rsync 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-tools 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-tools-c 1.44.0-9.module+el8.9.0+18724+20190c23
    * libguestfs-winsupport 8.10-1.module+el8.10.0+19908+9938c7c9
    * libguestfs-xfs 1.44.0-9.module+el8.9.0+18724+20190c23
    * libiscsi 1.18.0-8.module+el8.9.0+18724+20190c23
    * libiscsi-devel 1.18.0-8.module+el8.9.0+18724+20190c23
    * libiscsi-utils 1.18.0-8.module+el8.9.0+18724+20190c23
    * libnbd 1.6.0-6.module+el8.10.0+22250+3c790083
    * libnbd-bash-completion 1.6.0-6.module+el8.10.0+22250+3c790083
    * libnbd-devel 1.6.0-6.module+el8.10.0+22250+3c790083
    * libtpms 0.9.1-3.20211126git1ff6fe1f43.module+el8.10.0+23348+204cfc70
    * libtpms-devel 0.9.1-3.20211126git1ff6fe1f43.module+el8.10.0+23348+204cfc70
    * libvirt 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-client 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-config-network 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-config-nwfilter 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-interface 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-network 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-nodedev 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-nwfilter 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-qemu 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-secret 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage-core 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage-disk 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage-gluster 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage-iscsi 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage-iscsi-direct 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage-logical 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage-mpath 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage-rbd 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-driver-storage-scsi 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-daemon-kvm 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-dbus 1.3.0-2.module+el8.9.0+18724+20190c23
    * libvirt-devel 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-docs 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-libs 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-lock-sanlock 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-nss 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * libvirt-wireshark 8.0.0-23.4.module+el8.10.0+23205+d8da55c1
    * lua-guestfs 1.44.0-9.module+el8.9.0+18724+20190c23
    * nbdfuse 1.6.0-6.module+el8.10.0+22250+3c790083
    * nbdkit 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-bash-completion 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-basic-filters 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-basic-plugins 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-curl-plugin 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-devel 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-example-plugins 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-gzip-filter 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-gzip-plugin 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-linuxdisk-plugin 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-nbd-plugin 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-python-plugin 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-server 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-ssh-plugin 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-tar-filter 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-tar-plugin 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-tmpdisk-plugin 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-vddk-plugin 1.24.0-5.module+el8.9.0+18724+20190c23
    * nbdkit-xz-filter 1.24.0-5.module+el8.9.0+18724+20190c23
    * netcf 0.2.8-12.module+el8.9.0+18724+20190c23
    * netcf-devel 0.2.8-12.module+el8.9.0+18724+20190c23
    * netcf-libs 0.2.8-12.module+el8.9.0+18724+20190c23
    * perl-Sys-Guestfs 1.44.0-9.module+el8.9.0+18724+20190c23
    * perl-Sys-Virt 8.0.0-1.module+el8.9.0+18724+20190c23
    * perl-hivex 1.3.18-23.module+el8.9.0+18724+20190c23
    * python3-hivex 1.3.18-23.module+el8.9.0+18724+20190c23
    * python3-libguestfs 1.44.0-9.module+el8.9.0+18724+20190c23
    * python3-libnbd 1.6.0-6.module+el8.10.0+22250+3c790083
    * python3-libvirt 8.0.0-2.module+el8.9.0+18724+20190c23
    * qemu-guest-agent 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-img 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-block-curl 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-block-gluster 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-block-iscsi 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-block-rbd 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-block-ssh 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-common 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-core 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-docs 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-hw-usbredir 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-ui-opengl 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * qemu-kvm-ui-spice 6.2.0-53.module+el8.10.0+23081+c18b1ee3.4
    * ruby-hivex 1.3.18-23.module+el8.9.0+18724+20190c23
    * ruby-libguestfs 1.44.0-9.module+el8.9.0+18724+20190c23
    * seabios 1.16.0-4.module+el8.9.0+19570+14a90618
    * seabios-bin 1.16.0-4.module+el8.9.0+19570+14a90618
    * seavgabios-bin 1.16.0-4.module+el8.9.0+19570+14a90618
    * sgabios 0.20170427git-3.module+el8.9.0+18724+20190c23
    * sgabios-bin 0.20170427git-3.module+el8.9.0+18724+20190c23
    * supermin 5.2.1-2.module+el8.9.0+18724+20190c23
    * supermin-devel 5.2.1-2.module+el8.9.0+18724+20190c23
    * swtpm 0.7.0-4.20211109gitb79fd91.module+el8.9.0+18724+20190c23
    * swtpm-devel 0.7.0-4.20211109gitb79fd91.module+el8.9.0+18724+20190c23
    * swtpm-libs 0.7.0-4.20211109gitb79fd91.module+el8.9.0+18724+20190c23
    * swtpm-tools 0.7.0-4.20211109gitb79fd91.module+el8.9.0+18724+20190c23
    * swtpm-tools-pkcs11 0.7.0-4.20211109gitb79fd91.module+el8.9.0+18724+20190c23
    * virt-dib 1.44.0-9.module+el8.9.0+18724+20190c23
    * virt-v2v 1.42.0-22.module+el8.9.0+18724+20190c23
    * virt-v2v-bash-completion 1.42.0-22.module+el8.9.0+18724+20190c23
    * virt-v2v-man-pages-ja 1.42.0-22.module+el8.9.0+18724+20190c23
    * virt-v2v-man-pages-uk 1.42.0-22.module+el8.9.0+18724+20190c23

## References:

  * https://www.suse.com/security/cve/CVE-2025-49133.html

More information about the suse-liberty-linux-updates mailing list