vulnerability
CentOS Linux: CVE-2023-2680: Moderate: qemu-kvm security, bug fix, and enhancement update (CESA-2023:6368)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:M/C:C/I:C/A:C) | Sep 13, 2023 | Nov 8, 2023 | Jan 28, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:M/C:C/I:C/A:C)
Published
Sep 13, 2023
Added
Nov 8, 2023
Modified
Jan 28, 2025
Description
This CVE exists because of an incomplete fix for CVE-2021-3750. More specifically, the qemu-kvm package as released for Red Hat Enterprise Linux 9.1 via RHSA-2022:7967 included a version of qemu-kvm that was actually missing the fix for CVE-2021-3750.
Solution(s)
centos-upgrade-qemu-guest-agentcentos-upgrade-qemu-guest-agent-debuginfocentos-upgrade-qemu-imgcentos-upgrade-qemu-img-debuginfocentos-upgrade-qemu-kvmcentos-upgrade-qemu-kvm-audio-dbus-debuginfocentos-upgrade-qemu-kvm-audio-pacentos-upgrade-qemu-kvm-audio-pa-debuginfocentos-upgrade-qemu-kvm-block-blkiocentos-upgrade-qemu-kvm-block-blkio-debuginfocentos-upgrade-qemu-kvm-block-curlcentos-upgrade-qemu-kvm-block-curl-debuginfocentos-upgrade-qemu-kvm-block-rbdcentos-upgrade-qemu-kvm-block-rbd-debuginfocentos-upgrade-qemu-kvm-commoncentos-upgrade-qemu-kvm-common-debuginfocentos-upgrade-qemu-kvm-corecentos-upgrade-qemu-kvm-core-debuginfocentos-upgrade-qemu-kvm-debuginfocentos-upgrade-qemu-kvm-debugsourcecentos-upgrade-qemu-kvm-device-display-virtio-gpucentos-upgrade-qemu-kvm-device-display-virtio-gpu-debuginfocentos-upgrade-qemu-kvm-device-display-virtio-gpu-pcicentos-upgrade-qemu-kvm-device-display-virtio-gpu-pci-debuginfocentos-upgrade-qemu-kvm-device-display-virtio-vgacentos-upgrade-qemu-kvm-device-display-virtio-vga-debuginfocentos-upgrade-qemu-kvm-device-usb-hostcentos-upgrade-qemu-kvm-device-usb-host-debuginfocentos-upgrade-qemu-kvm-device-usb-redirectcentos-upgrade-qemu-kvm-device-usb-redirect-debuginfocentos-upgrade-qemu-kvm-docscentos-upgrade-qemu-kvm-tests-debuginfocentos-upgrade-qemu-kvm-toolscentos-upgrade-qemu-kvm-tools-debuginfocentos-upgrade-qemu-kvm-ui-dbus-debuginfocentos-upgrade-qemu-kvm-ui-egl-headlesscentos-upgrade-qemu-kvm-ui-egl-headless-debuginfocentos-upgrade-qemu-kvm-ui-openglcentos-upgrade-qemu-kvm-ui-opengl-debuginfocentos-upgrade-qemu-pr-helpercentos-upgrade-qemu-pr-helper-debuginfo
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.