ALSA-2022:5263

Source

https://errata.almalinux.org/9/ALSA-2022-5263.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2022:5263.json

Related

Published

2022-07-01T00:00:00Z

Modified

2022-07-21T17:32:20Z

Summary

Moderate: qemu-kvm security and bug fix update

Details

Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fix(es): * QEMU: virtio-net: map leaking on error during receive (CVE-2022-26353) * QEMU: vhost-vsock: missing virtqueue detach on error can lead to memory leak (CVE-2022-26354) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * AlmaLinux 9.0 guest with vsock device migration failed from AlmaLinux 9.0 > AlmaLinux 8.6 (BZ#2071102)

References

Affected packages

AlmaLinux:9 / qemu-guest-agent

Package

Name: qemu-guest-agent

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-img

Package

Name: qemu-img

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm

Package

Name: qemu-kvm

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-audio-pa

Package

Name: qemu-kvm-audio-pa

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-block-curl

Package

Name: qemu-kvm-block-curl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-block-rbd

Package

Name: qemu-kvm-block-rbd

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-common

Package

Name: qemu-kvm-common

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-core

Package

Name: qemu-kvm-core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-device-display-virtio-gpu

Package

Name: qemu-kvm-device-display-virtio-gpu

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-device-display-virtio-gpu-ccw

Package

Name: qemu-kvm-device-display-virtio-gpu-ccw

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-device-display-virtio-gpu-gl

Package

Name: qemu-kvm-device-display-virtio-gpu-gl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-device-display-virtio-gpu-pci

Package

Name: qemu-kvm-device-display-virtio-gpu-pci

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-device-display-virtio-gpu-pci-gl

Package

Name: qemu-kvm-device-display-virtio-gpu-pci-gl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-device-display-virtio-vga

Package

Name: qemu-kvm-device-display-virtio-vga

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-device-display-virtio-vga-gl

Package

Name: qemu-kvm-device-display-virtio-vga-gl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-device-usb-host

Package

Name: qemu-kvm-device-usb-host

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-device-usb-redirect

Package

Name: qemu-kvm-device-usb-redirect

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-docs

Package

Name: qemu-kvm-docs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-tools

Package

Name: qemu-kvm-tools

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-ui-egl-headless

Package

Name: qemu-kvm-ui-egl-headless

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-kvm-ui-opengl

Package

Name: qemu-kvm-ui-opengl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3

AlmaLinux:9 / qemu-pr-helper

Package

Name: qemu-pr-helper

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

17:6.2.0-11.el9_0.3