Medium severity5.5NVD Advisory· Published May 14, 2024· Updated Apr 15, 2026
CVE-2024-4693
CVE-2024-4693
Description
A flaw was found in the QEMU Virtio PCI Bindings (hw/virtio/virtio-pci.c). An improper release and use of the irqfd for vector 0 during the boot process leads to a guest triggerable crash via vhost_net_stop(). This flaw allows a malicious guest to crash the QEMU process on the host.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10- osv-coords8 versionspkg:rpm/opensuse/qemu&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/qemu-linux-user&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Confidential%20Computing%20Technical%20Preview%2015%20SP6pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/qemu-linux-user&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6
< 8.2.7-150600.3.20.1+ 7 more
- (no CPE)range: < 8.2.7-150600.3.20.1
- (no CPE)range: < 8.2.7-150600.3.20.1
- (no CPE)range: < 8.2.7-150600.3.20.1
- (no CPE)range: < 8.2.7-15061.6.coco15sp6.1
- (no CPE)range: < 8.2.7-150600.3.20.1
- (no CPE)range: < 8.2.7-150600.3.20.1
- (no CPE)range: < 8.2.7-1.1
- (no CPE)range: < 8.2.7-150600.3.20.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.