Source: qemu Version: 1:10.2.1+ds-1 Severity: important Tags: security upstream X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]> Control: found -1 1:10.0.7+ds-0+deb13u1 Control: found -1 1:10.0.2+ds-2+deb13u1
Hi, The following vulnerability was published for qemu. CVE-2026-3195[0]: | virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb (incomplete | fix for CVE-2024-7730) If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2026-3195 https://www.cve.org/CVERecord?id=CVE-2026-3195 [1] https://lore.kernel.org/qemu-devel/[email protected]/ [2] https://gitlab.com/qemu-project/qemu/-/commit/bcb53328aa70023f1405fade4e253e7f77567261 [3] https://gitlab.com/qemu-project/qemu/-/commit/7994203bb1b83a6604f3ab00fe9598909bb66164 Regards, Salvatore
