This bug was fixed in the package qemu - 1:8.2.2+ds-0ubuntu1.4 --------------- qemu (1:8.2.2+ds-0ubuntu1.4) noble-security; urgency=medium
* SECURITY UPDATE: denial of service - debian/patches/CVE-2024-4693-1.patch: virtio-pci: fix use of a released vector - debian/patches/CVE-2024-4693-2.patch: virtio-pci: Fix the use of an uninitialized irqfd - CVE-2024-4693 * SECURITY UPDATE: heap buffer overflow - debian/patches/CVE-2024-7730.patch: add max size bounds check in input cb - CVE-2024-7730 -- Bruce Cable <bruce.ca...@canonical.com> Tue, 22 Oct 2024 15:57:13 +1100 ** Changed in: qemu (Ubuntu Noble) Status: Fix Committed => Fix Released ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-4693 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-7730 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2076587 Title: cpu hotplug crashes the guest! To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-power-systems/+bug/2076587/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs