[Apollo] Advisories Statistics light light Login

RLSA-2026:18479

Security Mirrored from RHSA-2026:18479
Issued at: 2026-05-29
Updated at: 2026-05-29

Synopsis

Important: qemu-kvm security update



Description

Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.

Security Fix(es):

* firefox: thunderbird: CSP Bypass and XSS Exposure via Web Compatibility Shims (CVE-2024-11694)

* firefox: thunderbird: Unhandled Exception in Add-on Signature Verification (CVE-2024-11696)

* firefox: thunderbird: Select list elements could be shown over another site (CVE-2024-11692)

* firefox: thunderbird: Memory safety bugs fixed in Firefox 133, Thunderbird 133, Firefox ESR 128.5, and Thunderbird 128.5 (CVE-2024-11699)

* firefox: thunderbird: URL Bar Spoofing via Manipulated Punycode and Whitespace Characters (CVE-2024-11695)

* firefox: thunderbird: Improper Keypress Handling in Executable File Confirmation Dialog (CVE-2024-11697)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 10 Release Notes linked from the References section.



Affected products

Rocky Linux 10 aarch64 Rocky Linux 10 ppc64le Rocky Linux 10 riscv64 Rocky Linux 10 s390x Rocky Linux 10 x86_64

Fixes

2328947 2328950 2328946 2328948 2328943 2328941

CVEs

CVE-2024-11692 CVE-2024-11694 CVE-2024-11695 CVE-2024-11696 CVE-2024-11697 CVE-2024-11699

Affected packages

Rocky Linux 10 x86_64 - AppStream

qemu-kvm-ui-egl-headless-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-ui-egl-headless-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-display-virtio-gpu-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-block-curl-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-block-blkio-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-block-rbd-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-common-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-usb-host-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-display-virtio-vga-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-tools-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-ui-opengl-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-block-rbd-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-ui-opengl-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-block-curl-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-display-virtio-gpu-pci-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-audio-pa-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-core-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-core-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-audio-pa-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-display-virtio-gpu-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-common-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-block-blkio-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-18:10.1.0-16.el10_2.src.rpm qemu-pr-helper-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-usb-redirect-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-pr-helper-18:10.1.0-16.el10_2.x86_64.rpm qemu-img-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-docs-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-usb-redirect-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-tools-18:10.1.0-16.el10_2.x86_64.rpm qemu-img-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-guest-agent-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-guest-agent-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-debugsource-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-display-virtio-vga-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-usb-host-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-device-display-virtio-gpu-pci-debuginfo-18:10.1.0-16.el10_2.x86_64.rpm qemu-kvm-18:10.1.0-16.el10_2.x86_64.rpm

Rocky Linux 10 aarch64 - AppStream

qemu-kvm-device-usb-host-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-device-display-virtio-gpu-18:10.1.0-16.el10_2.aarch64.rpm qemu-pr-helper-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-core-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-docs-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-core-18:10.1.0-16.el10_2.aarch64.rpm qemu-guest-agent-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-device-usb-redirect-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-common-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-block-rbd-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-device-usb-redirect-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-18:10.1.0-16.el10_2.src.rpm qemu-kvm-device-usb-host-18:10.1.0-16.el10_2.aarch64.rpm qemu-pr-helper-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-guest-agent-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-device-display-virtio-gpu-pci-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-block-blkio-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-audio-pa-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-block-curl-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-debugsource-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-device-display-virtio-gpu-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-tools-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-audio-pa-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-tools-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-block-curl-18:10.1.0-16.el10_2.aarch64.rpm qemu-img-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-img-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-block-rbd-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-block-blkio-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-common-18:10.1.0-16.el10_2.aarch64.rpm qemu-kvm-device-display-virtio-gpu-pci-debuginfo-18:10.1.0-16.el10_2.aarch64.rpm

Rocky Linux 10 s390x - AppStream

qemu-kvm-core-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-block-rbd-18:10.1.0-16.el10_2.s390x.rpm qemu-guest-agent-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-device-display-virtio-gpu-ccw-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-debugsource-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-device-display-virtio-gpu-ccw-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-pr-helper-18:10.1.0-16.el10_2.s390x.rpm qemu-img-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-block-curl-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-tools-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-common-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-block-curl-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-device-display-virtio-gpu-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-img-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-18:10.1.0-16.el10_2.src.rpm qemu-kvm-device-usb-host-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-device-usb-host-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-block-rbd-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-docs-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-device-display-virtio-gpu-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-audio-pa-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-pr-helper-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-tools-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-audio-pa-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-block-blkio-18:10.1.0-16.el10_2.s390x.rpm qemu-guest-agent-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-common-debuginfo-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-core-18:10.1.0-16.el10_2.s390x.rpm qemu-kvm-block-blkio-debuginfo-18:10.1.0-16.el10_2.s390x.rpm

Rocky Linux 10 ppc64le - AppStream

qemu-kvm-debugsource-18:10.1.0-16.el10_2.ppc64le.rpm qemu-guest-agent-debuginfo-18:10.1.0-16.el10_2.ppc64le.rpm qemu-guest-agent-18:10.1.0-16.el10_2.ppc64le.rpm qemu-img-debuginfo-18:10.1.0-16.el10_2.ppc64le.rpm qemu-kvm-18:10.1.0-16.el10_2.src.rpm qemu-img-18:10.1.0-16.el10_2.ppc64le.rpm

Rocky Linux 10 riscv64 - AppStream

qemu-kvm-18:10.1.0-16.el10_2.src.rpm