CVE-2026-3195Heap-based Buffer Overflow in Qemu

CWE-122Heap-based Buffer Overflow4 documents4 sources
Severity
5.3LOW
No vector
EPSS
No EPSS data
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Debian Qemu
Timeline
Latest updateApr 9

Description

bookworm: resolved bullseye: resolved forky: resolved (fixed in 1:10.2.2+ds-1) sid: resolved (fixed in 1:10.2.2+ds-1) trixie: open

Affected Packages1 packages

debiandebian/qemu< qemu 1:10.2.2+ds-1 (forky)

📋Vendor Advisories

3
Ubuntu
QEMU vulnerabilities2026-04-09
Red Hat
qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb (incomplete fix for CVE-2024-7730)2026-02-20
Debian
CVE-2026-3195: qemu2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-3195 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-3195 — Heap-based Buffer Overflow in Qemu | cvebase