Oval Definition:oval:org.opensuse.security:def:20213507
Revision Date:2023-04-22Version:1
Title:CVE-2021-3507
Description:

A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 (including). It could occur in fdctrl_transfer_handler() in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU process on the host resulting in DoS scenario, or potential information leakage from the host memory.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2021-3507
SUSE CVE-2021-3507
SUSE-SU-2022:3768-1
SUSE-SU-2023:0761-1
SUSE-SU-2023:0840-1
SUSE-SU-2023:0878-1
SUSE-SU-2023:0879-1
Platform(s):SUSE Linux Enterprise Micro 5.3
SUSE Linux Enterprise Micro 5.4
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Micro 5.3 is installed
  • AND Package Information
  • qemu is affected
  • OR qemu-accel-tcg-x86 is affected
  • OR qemu-arm is affected
  • OR qemu-audio-spice is affected
  • OR qemu-chardev-spice is affected
  • OR qemu-guest-agent is affected
  • OR qemu-hw-display-qxl is affected
  • OR qemu-hw-display-virtio-gpu is affected
  • OR qemu-hw-display-virtio-vga is affected
  • OR qemu-hw-usb-redirect is affected
  • OR qemu-ipxe is affected
  • OR qemu-s390x is affected
  • OR qemu-seabios is affected
  • OR qemu-sgabios is affected
  • OR qemu-tools is affected
  • OR qemu-ui-opengl is affected
  • OR qemu-ui-spice-core is affected
  • OR qemu-vgabios is affected
  • OR qemu-x86 is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.4 is installed
  • AND Package Information
  • qemu is affected
  • OR qemu-accel-tcg-x86 is affected
  • OR qemu-arm is affected
  • OR qemu-audio-spice is affected
  • OR qemu-chardev-spice is affected
  • OR qemu-guest-agent is affected
  • OR qemu-hw-display-qxl is affected
  • OR qemu-hw-display-virtio-gpu is affected
  • OR qemu-hw-display-virtio-vga is affected
  • OR qemu-hw-usb-redirect is affected
  • OR qemu-ipxe is affected
  • OR qemu-s390x is affected
  • OR qemu-seabios is affected
  • OR qemu-sgabios is affected
  • OR qemu-tools is affected
  • OR qemu-ui-opengl is affected
  • OR qemu-ui-spice-core is affected
  • OR qemu-vgabios is affected
  • OR qemu-x86 is affected
    • BACK