{"affected":[{"ecosystem_specific":{"binaries":[{"qemu":"8.2.7-1.1","qemu-accel-tcg-x86":"8.2.7-1.1","qemu-arm":"8.2.7-1.1","qemu-audio-spice":"8.2.7-1.1","qemu-block-curl":"8.2.7-1.1","qemu-block-iscsi":"8.2.7-1.1","qemu-block-rbd":"8.2.7-1.1","qemu-block-ssh":"8.2.7-1.1","qemu-chardev-spice":"8.2.7-1.1","qemu-guest-agent":"8.2.7-1.1","qemu-hw-display-qxl":"8.2.7-1.1","qemu-hw-display-virtio-gpu":"8.2.7-1.1","qemu-hw-display-virtio-gpu-pci":"8.2.7-1.1","qemu-hw-display-virtio-vga":"8.2.7-1.1","qemu-hw-usb-host":"8.2.7-1.1","qemu-hw-usb-redirect":"8.2.7-1.1","qemu-img":"8.2.7-1.1","qemu-ipxe":"8.2.7-1.1","qemu-ksm":"8.2.7-1.1","qemu-lang":"8.2.7-1.1","qemu-pr-helper":"8.2.7-1.1","qemu-s390x":"8.2.7-1.1","qemu-seabios":"8.2.71.16.3_3_ga95067eb-1.1","qemu-tools":"8.2.7-1.1","qemu-ui-opengl":"8.2.7-1.1","qemu-ui-spice-core":"8.2.7-1.1","qemu-vgabios":"8.2.71.16.3_3_ga95067eb-1.1","qemu-x86":"8.2.7-1.1"}]},"package":{"ecosystem":"SUSE:Linux Micro 6.0","name":"qemu","purl":"pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Micro%206.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"8.2.7-1.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for qemu fixes the following issues:\n\n- Bugfixes and CVEs:\n  * hw/usb/hcd-ohci: Fix #1510, #303: pid not IN or OUT (bsc#1230834, CVE-2024-8354)\n  * softmmu: Support concurrent bounce buffers (bsc#1230915, CVE-2024-8612)\n  * system/physmem: Per-AddressSpace bounce buffering (bsc#1230915, CVE-2024-8612)\n  * system/physmem: Propagate AddressSpace to MapClient helpers (bsc#1230915, CVE-2024-8612)\n  * system/physmem: Replace qemu_mutex_lock() calls with QEMU_LOCK_GUARD (bsc#1230915, CVE-2024-8612)\n\n- Update version to 8.2.7\n  * Full changelog here:\n     https://lore.kernel.org/qemu-devel/d9ff276f-f1ba-4e90-8343-a7a0dc2bf305@tls.msk.ru/\n  * Fixes:\n     bsc#1229007, CVE-2024-7409\n     bsc#1224132, CVE-2024-4693\n  * Some backports:\n     gitlab: fix logic for changing docker tag on stable branches\n     ui/sdl2: set swap interval explicitly when OpenGL is enabled\n     hw/intc/arm_gic: fix spurious level triggered interrupts\n     hw/audio/virtio-sound: fix heap buffer overflow\n     tests/docker: update debian i686 and mipsel images to bookworm\n     tests/docker: remove debian-armel-cross\n     hw/display/vhost-user-gpu.c: fix vhost_user_gpu_chr_read()\n     crypto: check gnutls & gcrypt support the requested pbkdf hash\n     crypto: run qcrypto_pbkdf2_count_iters in a new thread\n     softmmu/physmem: fix memory leak in dirty_memory_extend()\n     target/ppc: Fix migration of CPUs with TLB_EMB TLB type\n     gitlab: migrate the s390x custom machine to 22.04\n     target/hppa: Fix PSW V-bit packaging in cpu_hppa_get for hppa64\n     hw/audio/virtio-snd: fix invalid param check\n     virtio-pci: Fix the use of an uninitialized irqfd\n- Fix bsc#1231519:\n  * accel/kvm: check for KVM_CAP_READONLY_MEM on VM (bsc#1231519)\n","id":"SUSE-SU-2025:20076-1","modified":"2025-02-03T09:05:11Z","published":"2025-02-03T09:05:11Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202520076-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1224132"},{"type":"REPORT","url":"https://bugzilla.suse.com/1229007"},{"type":"REPORT","url":"https://bugzilla.suse.com/1229929"},{"type":"REPORT","url":"https://bugzilla.suse.com/1230140"},{"type":"REPORT","url":"https://bugzilla.suse.com/1230834"},{"type":"REPORT","url":"https://bugzilla.suse.com/1230915"},{"type":"REPORT","url":"https://bugzilla.suse.com/1231519"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-4693"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-7409"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-8354"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-8612"}],"related":["CVE-2024-4693","CVE-2024-7409","CVE-2024-8354","CVE-2024-8612"],"summary":"Security update for qemu","upstream":["CVE-2024-4693","CVE-2024-7409","CVE-2024-8354","CVE-2024-8612"]}