Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > linux.debian.bugs.dist > #1284514
| From | Salvatore Bonaccorso <carnil@debian.org> |
|---|---|
| Newsgroups | linux.debian.bugs.dist |
| Subject | Bug#1129604: qemu: CVE-2026-3195: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb (incomplete fix for CVE-2024-7730) |
| Date | 2026-03-03 22:10 +0100 |
| Message-ID | <MuFaa-4O14-21@gated-at.bofh.it> (permalink) |
| Organization | linux.* mail to news gateway |
Source: qemu
Version: 1:10.2.1+ds-1
Severity: important
Tags: security upstream
X-Debbugs-Cc: carnil@debian.org, Debian Security Team <team@security.debian.org>
Control: found -1 1:10.0.7+ds-0+deb13u1
Control: found -1 1:10.0.2+ds-2+deb13u1
Hi,
The following vulnerability was published for qemu.
CVE-2026-3195[0]:
| virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb (incomplete
| fix for CVE-2024-7730)
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2026-3195
https://www.cve.org/CVERecord?id=CVE-2026-3195
[1] https://lore.kernel.org/qemu-devel/20260220-virtio-snd-series-v1-0-207c4f7200a2@linaro.org/
[2] https://gitlab.com/qemu-project/qemu/-/commit/bcb53328aa70023f1405fade4e253e7f77567261
[3] https://gitlab.com/qemu-project/qemu/-/commit/7994203bb1b83a6604f3ab00fe9598909bb66164
Regards,
Salvatore
Back to linux.debian.bugs.dist | Previous | Next | Find similar | Unroll thread
Bug#1129604: qemu: CVE-2026-3195: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb (incomplete fix for CVE-2024-7730) Salvatore Bonaccorso <carnil@debian.org> - 2026-03-03 22:10 +0100
csiph-web