Bugzilla – Bug 1198712
VUL-1: CVE-2022-26354: kvm,qemu: QEMU: vhost-vsock: missing virtqueue detach on error can lead to memory leak
Last modified: 2023-03-16 12:30:34 UTC
rh#2063257 A flaw was found in the vhost-vsock device of QEMU. In case of error, vhost_vsock_common_send_transport_reset() did not detach the invalid element from the virtqueue before freeing its memory, leading to memory leakage or other unexpected results. Upstream commit: https://gitlab.com/qemu-project/qemu/-/commit/8d1b247f3748ac4078524130c6d7ae42b6140aaf References: https://bugzilla.redhat.com/show_bug.cgi?id=2063257 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-26354 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354 https://gitlab.com/qemu-project/qemu/-/commit/8d1b247f3748ac4078524130c6d7ae42b6140aaf https://lists.debian.org/debian-lts-announce/2022/04/msg00002.html
All qemu codestreams >= SLE-12-SP3 are affected.
- 15-SP3: * https://build.suse.de/request/show/273531 * https://build.suse.de/request/show/273543
SUSE-SU-2022:2254-1: An update that solves three vulnerabilities and has three fixes is now available. Category: security (important) Bug References: 1197084,1198035,1198037,1198712,1199018,1199924 CVE References: CVE-2021-4206,CVE-2021-4207,CVE-2022-26354 JIRA References: Sources used: openSUSE Leap 15.3 (src): qemu-5.2.0-150300.115.2, qemu-linux-user-5.2.0-150300.115.2, qemu-testsuite-5.2.0-150300.115.4 SUSE Linux Enterprise Module for Server Applications 15-SP3 (src): qemu-5.2.0-150300.115.2 SUSE Linux Enterprise Module for Basesystem 15-SP3 (src): qemu-5.2.0-150300.115.2 SUSE Linux Enterprise Micro 5.2 (src): qemu-5.2.0-150300.115.2 SUSE Linux Enterprise Micro 5.1 (src): qemu-5.2.0-150300.115.2 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2022:2260-1: An update that solves four vulnerabilities and has 5 fixes is now available. Category: security (important) Bug References: 1197084,1198035,1198037,1198711,1198712,1199015,1199018,1199625,1199924 CVE References: CVE-2021-4206,CVE-2021-4207,CVE-2022-26353,CVE-2022-26354 JIRA References: Sources used: openSUSE Leap 15.4 (src): qemu-6.2.0-150400.37.5.3, qemu-linux-user-6.2.0-150400.37.5.1, qemu-testsuite-6.2.0-150400.37.5.5 SUSE Linux Enterprise Module for Server Applications 15-SP4 (src): qemu-6.2.0-150400.37.5.3 SUSE Linux Enterprise Module for Basesystem 15-SP4 (src): qemu-6.2.0-150400.37.5.3 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
I think this is done, isn't it?
This is an autogenerated message for OBS integration: This bug (1198712) was mentioned in https://build.opensuse.org/request/show/990694 Factory / qemu
SUSE-SU-2023:0761-1: An update that solves 14 vulnerabilities can now be installed. Category: security (important) Bug References: 1172033, 1172382, 1175144, 1180207, 1182282, 1185000, 1193880, 1197653, 1198035, 1198038, 1198712, 1201367, 1205808 CVE References: CVE-2020-13253, CVE-2020-13754, CVE-2020-14394, CVE-2020-17380, CVE-2020-25085, CVE-2021-3409, CVE-2021-3507, CVE-2021-3929, CVE-2021-4206, CVE-2022-0216, CVE-2022-1050, CVE-2022-26354, CVE-2022-35414, CVE-2022-4144 Sources used: SUSE Linux Enterprise High Performance Computing 12 SP5 (src): qemu-3.1.1.1-66.1 SUSE Linux Enterprise Server 12 SP5 (src): qemu-3.1.1.1-66.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src): qemu-3.1.1.1-66.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.