Bugzilla – Bug 1203788
VUL-0: CVE-2022-3165: qemu,kvm: integer underflow in vnc_client_cut_text_ext() leads to CPU exhaustion
Last modified: 2023-03-08 12:32:03 UTC
An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format . A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message, resulting in a denial of service condition.
Clipboard support was added in 0bf41cab93e5c72dcda7 ("ui/vnc: clipboard support"), which is only present in SUSE:SLE-15-SP4:Update and Factory, so only those are affected.
Proposed patch (not merged yet):
Any update please? :)
This is an autogenerated message for OBS integration:
This bug (1203788) was mentioned in
https://build.opensuse.org/request/show/1064332 Factory / qemu
I think this is done, isn't it? Reassigning
SUSE-SU-2023:0671-1: An update that solves three vulnerabilities and has two fixes can now be installed.
Category: security (important)
Bug References: 1197653, 1202364, 1203788, 1205808, 1206527
CVE References: CVE-2022-1050, CVE-2022-3165, CVE-2022-4144
openSUSE Leap Micro 5.3 (src): qemu-6.2.0-150400.37.11.1
openSUSE Leap 15.4 (src): qemu-6.2.0-150400.37.11.1, qemu-linux-user-6.2.0-150400.37.11.1, qemu-testsuite-6.2.0-150400.37.11.2
SUSE Linux Enterprise Micro for Rancher 5.3 (src): qemu-6.2.0-150400.37.11.1
SUSE Linux Enterprise Micro 5.3 (src): qemu-6.2.0-150400.37.11.1
Basesystem Module 15-SP4 (src): qemu-6.2.0-150400.37.11.1
Server Applications Module 15-SP4 (src): qemu-6.2.0-150400.37.11.1
NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.