Oval Definition:oval:org.opensuse.security:def:20231544
Revision Date:2023-06-22Version:1
Title:CVE-2023-1544
Description:

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2023-1544
SUSE CVE-2023-1544
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Micro 5.4
SUSE Linux Enterprise Module for Basesystem 15 SP5
SUSE Linux Enterprise Module for Server Applications 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Micro 5.4 is installed
  • AND Package Information
  • qemu is affected
  • OR qemu-accel-tcg-x86 is affected
  • OR qemu-arm is affected
  • OR qemu-audio-spice is affected
  • OR qemu-chardev-spice is affected
  • OR qemu-guest-agent is affected
  • OR qemu-hw-display-qxl is affected
  • OR qemu-hw-display-virtio-gpu is affected
  • OR qemu-hw-display-virtio-vga is affected
  • OR qemu-hw-usb-redirect is affected
  • OR qemu-ipxe is affected
  • OR qemu-s390x is affected
  • OR qemu-seabios is affected
  • OR qemu-sgabios is affected
  • OR qemu-tools is affected
  • OR qemu-ui-opengl is affected
  • OR qemu-ui-spice-core is affected
  • OR qemu-vgabios is affected
  • OR qemu-x86 is affected
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND qemu-tools is affected
  • OR Package Information
  • SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Server Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND
  • qemu is affected
  • OR qemu-SLOF is affected
  • OR qemu-accel-tcg-x86 is affected
  • OR qemu-arm is affected
  • OR qemu-audio-alsa is affected
  • OR qemu-audio-dbus is affected
  • OR qemu-audio-pa is affected
  • OR qemu-audio-spice is affected
  • OR qemu-block-curl is affected
  • OR qemu-block-iscsi is affected
  • OR qemu-block-rbd is affected
  • OR qemu-block-ssh is affected
  • OR qemu-chardev-baum is affected
  • OR qemu-chardev-spice is affected
  • OR qemu-guest-agent is affected
  • OR qemu-hw-display-qxl is affected
  • OR qemu-hw-display-virtio-gpu is affected
  • OR qemu-hw-display-virtio-gpu-pci is affected
  • OR qemu-hw-display-virtio-vga is affected
  • OR qemu-hw-s390x-virtio-gpu-ccw is affected
  • OR qemu-hw-usb-host is affected
  • OR qemu-hw-usb-redirect is affected
  • OR qemu-ipxe is affected
  • OR qemu-ksm is affected
  • OR qemu-kvm is affected
  • OR qemu-lang is affected
  • OR qemu-ppc is affected
  • OR qemu-s390x is affected
  • OR qemu-seabios is affected
  • OR qemu-sgabios is affected
  • OR qemu-skiboot is affected
  • OR qemu-ui-curses is affected
  • OR qemu-ui-dbus is affected
  • OR qemu-ui-gtk is affected
  • OR qemu-ui-opengl is affected
  • OR qemu-ui-spice-app is affected
  • OR qemu-ui-spice-core is affected
  • OR qemu-vgabios is affected
  • OR qemu-x86 is affected
  • BACK