| Revision Date: | 2020-12-02 | Version: | 1 |
| Title: | Security update for qemu (Important) |
| Description: |
This update for qemu fixes the following issues:
- CVE-2020-7039: Fixed a heap buffer overflow in tcp_emu() routine while emulating IRC and other protocols (bsc#1161066). - CVE-2019-15034: Fixed a buffer overflow in hw/display/bochs-display.c due to improper PCI config space allocation (bsc#1166379). - CVE-2020-1711: Fixed an out of bounds heap buffer access iscsi_co_block_status() routine which could have allowed a remote denial of service or arbitrary code with privileges of the QEMU process on the host (bsc#1166240). - CVE-2019-6778: Fixed a heap buffer overflow in tcp_emu() routine while emulating the identification protocol and copying message data to a socket buffer (bsc#1123156). - CVE-2020-8608: Fixed a heap buffer overflow in tcp_emu() routine while emulating IRC and other protocols (bsc#1163018). - CVE-2019-20382: Fixed a memory leak in the VNC display driver which could have led to exhaustion of the host memory leading to a potential Denial of service (bsc#1165776). - Fixed a live migration error (bsc#1154790). - Fixed an issue where migrating VMs on KVM gets missing features:ospke error (bsc#1162729).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1012382
1013721
1013732
1050242
1051510
1053043
1054914
1055117
1055186
1056787
1058115
1061840
1063638
1064802
1065600
1065729
1066129
1068546
1071995
1075020
1082387
1082555
1083647
1085535
1099658
1103992
1104353
1104427
1104967
1106011
1106284
1108193
1108838
1108937
1109158
1110946
1111696
1112063
1113722
1114279
1114427
1115688
1117158
1117561
1118139
1119086
1119843
1120091
1120423
1120566
1120843
1120902
1122776
1123034
1123156
1123454
1123663
1124503
1124839
1126356
1127616
1127988
1128052
1128904
1128979
1129138
1129273
1129497
1129693
1129770
1130579
1130699
1130972
1131304
1131326
1131451
1131488
1131565
1131673
1132044
1133176
1133188
1133190
1133320
1133612
1133616
1134160
1134162
1134199
1134200
1134201
1134202
1134203
1134204
1134205
1134354
1134393
1134459
1134460
1134461
1134537
1134597
1134651
1134671
1134760
1134806
1134810
1134813
1134848
1134936
1135006
1135007
1135008
1135056
1135100
1135120
1135278
1135281
1135309
1135312
1135314
1135315
1135316
1135320
1135323
1135330
1135492
1135542
1135556
1135603
1135642
1135661
1135758
1136206
1136424
1136428
1136430
1136432
1136434
1136435
1136438
1136439
1136477
1136478
1136573
1136586
1136881
1136935
1136990
1137069
1137151
1137152
1137153
1137162
1137372
1137444
1137586
1137595
1137739
1137752
1137865
1137959
1138872
1140155
1141013
1142076
1142635
1142825
1142832
1142835
1146042
1146519
1146540
1146664
1148133
1148712
1148868
1149313
1149446
1149555
1149651
1150381
1150423
1151350
1151610
1151667
1151680
1151891
1151955
1152024
1152025
1152026
1152161
1152325
1152457
1152460
1152466
1152972
1152974
1152975
1154790
1155419
1160471
1161066
1162729
1163018
1165776
1166240
1166379
1170441
1173157
1174139
1174955
1175465
1176430
1177155
CVE-2007-4129
CVE-2008-1420
CVE-2009-2473
CVE-2009-2474
CVE-2009-3379
CVE-2011-2054
CVE-2012-0444
CVE-2012-4453
CVE-2013-2003
CVE-2014-0105
CVE-2016-9800
CVE-2016-9801
CVE-2017-18595
CVE-2018-7191
CVE-2019-10124
CVE-2019-10181
CVE-2019-10182
CVE-2019-10185
CVE-2019-11085
CVE-2019-11477
CVE-2019-11478
CVE-2019-11479
CVE-2019-11486
CVE-2019-11487
CVE-2019-11703
CVE-2019-11704
CVE-2019-11705
CVE-2019-11706
CVE-2019-11707
CVE-2019-11708
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
CVE-2019-12382
CVE-2019-14821
CVE-2019-15034
CVE-2019-15291
CVE-2019-15681
CVE-2019-15690
CVE-2019-20382
CVE-2019-20788
CVE-2019-3846
CVE-2019-5489
CVE-2019-6778
CVE-2019-9506
CVE-2020-15708
CVE-2020-1711
CVE-2020-25637
CVE-2020-7039
CVE-2020-8608
SUSE-SU-2018:4189-1
SUSE-SU-2019:1529-1
SUSE-SU-2019:1683-1
SUSE-SU-2019:2033-1
SUSE-SU-2019:2706-1
SUSE-SU-2020:0844-1
SUSE-SU-2020:1164-1
SUSE-SU-2020:2970-1
|
| Platform(s): | SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 5
| Product(s): | |
| Definition Synopsis |
| SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information
python-keystoneclient-1.0.0-14 is installed
OR python-keystoneclient-doc-1.0.0-14 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP3 is installed
AND cabextract-1.2-2.12.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed
AND coolkey-1.1.0-147 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
dia-0.97.2-13 is installed
OR dia-lang-0.97.2-13 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP2 is installed
AND argyllcms-1.6.3-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
cracklib-2.9.0-7 is installed
OR libcrack2-2.9.0-7 is installed
OR libcrack2-32bit-2.9.0-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP4 is installed
AND Package Information
cups-1.7.5-20.17 is installed
OR cups-client-1.7.5-20.17 is installed
OR cups-libs-1.7.5-20.17 is installed
OR cups-libs-32bit-1.7.5-20.17 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 is installed
AND Package Information
conntrack-tools-1.4.2-5.2 is installed
OR libnetfilter_cthelper-1.0.0-7.1 is installed
OR libnetfilter_cthelper0-1.0.0-7.1 is installed
OR libnetfilter_cttimeout-1.0.0-9.1 is installed
OR libnetfilter_cttimeout1-1.0.0-9.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP1 is installed
AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP2 is installed
AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP3 is installed
AND conntrack-tools-1.4.2-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP5 is installed
AND conntrack-tools-1.4.2-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
AND Package Information
apache-commons-beanutils-1.9.2-3.3 is installed
OR apache-commons-beanutils-javadoc-1.9.2-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Live Patching 12 is installed
AND Package Information
kgraft-patch-3_12_38-44-default-1-2.2 is installed
OR kgraft-patch-3_12_38-44-xen-1-2.2 is installed
OR kgraft-patch-SLE12_Update_3-1-2.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
AND Package Information
salt-2016.11.4-45.2 is installed
OR salt-api-2016.11.4-45.2 is installed
OR salt-bash-completion-2016.11.4-45.2 is installed
OR salt-cloud-2016.11.4-45.2 is installed
OR salt-doc-2016.11.4-45.2 is installed
OR salt-master-2016.11.4-45.2 is installed
OR salt-minion-2016.11.4-45.2 is installed
OR salt-proxy-2016.11.4-45.2 is installed
OR salt-ssh-2016.11.4-45.2 is installed
OR salt-syndic-2016.11.4-45.2 is installed
OR salt-zsh-completion-2016.11.4-45.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Containers 12 is installed
AND Package Information
ruby2.1-rubygem-rack-1_4-1.4.5-8.10 is installed
OR rubygem-rack-1_4-1.4.5-8.10 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Legacy Software 12 is installed
AND Package Information
compat-openssl098-0.9.8j-87.1 is installed
OR libopenssl0_9_8-0.9.8j-87.1 is installed
OR libopenssl0_9_8-32bit-0.9.8j-87.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Public Cloud 12 is installed
AND Package Information
kernel-ec2-3.12.48-52.27.1 is installed
OR kernel-ec2-devel-3.12.48-52.27.1 is installed
OR kernel-ec2-extra-3.12.48-52.27.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
AND Package Information
qemu-3.1.1.1-9.14 is installed
OR qemu-arm-3.1.1.1-9.14 is installed
OR qemu-audio-alsa-3.1.1.1-9.14 is installed
OR qemu-audio-oss-3.1.1.1-9.14 is installed
OR qemu-audio-pa-3.1.1.1-9.14 is installed
OR qemu-block-curl-3.1.1.1-9.14 is installed
OR qemu-block-iscsi-3.1.1.1-9.14 is installed
OR qemu-block-rbd-3.1.1.1-9.14 is installed
OR qemu-block-ssh-3.1.1.1-9.14 is installed
OR qemu-guest-agent-3.1.1.1-9.14 is installed
OR qemu-ipxe-1.0.0+-9.14 is installed
OR qemu-kvm-3.1.1.1-9.14 is installed
OR qemu-lang-3.1.1.1-9.14 is installed
OR qemu-ppc-3.1.1.1-9.14 is installed
OR qemu-s390-3.1.1.1-9.14 is installed
OR qemu-seabios-1.12.0-9.14 is installed
OR qemu-sgabios-8-9.14 is installed
OR qemu-ui-curses-3.1.1.1-9.14 is installed
OR qemu-ui-gtk-3.1.1.1-9.14 is installed
OR qemu-vgabios-1.12.0-9.14 is installed
OR qemu-x86-3.1.1.1-9.14 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
AND Package Information
libvirt-6.0.0-13.8 is installed
OR libvirt-admin-6.0.0-13.8 is installed
OR libvirt-bash-completion-6.0.0-13.8 is installed
OR libvirt-client-6.0.0-13.8 is installed
OR libvirt-daemon-6.0.0-13.8 is installed
OR libvirt-daemon-config-network-6.0.0-13.8 is installed
OR libvirt-daemon-config-nwfilter-6.0.0-13.8 is installed
OR libvirt-daemon-driver-interface-6.0.0-13.8 is installed
OR libvirt-daemon-driver-libxl-6.0.0-13.8 is installed
OR libvirt-daemon-driver-lxc-6.0.0-13.8 is installed
OR libvirt-daemon-driver-network-6.0.0-13.8 is installed
OR libvirt-daemon-driver-nodedev-6.0.0-13.8 is installed
OR libvirt-daemon-driver-nwfilter-6.0.0-13.8 is installed
OR libvirt-daemon-driver-qemu-6.0.0-13.8 is installed
OR libvirt-daemon-driver-secret-6.0.0-13.8 is installed
OR libvirt-daemon-driver-storage-6.0.0-13.8 is installed
OR libvirt-daemon-driver-storage-core-6.0.0-13.8 is installed
OR libvirt-daemon-driver-storage-disk-6.0.0-13.8 is installed
OR libvirt-daemon-driver-storage-iscsi-6.0.0-13.8 is installed
OR libvirt-daemon-driver-storage-logical-6.0.0-13.8 is installed
OR libvirt-daemon-driver-storage-mpath-6.0.0-13.8 is installed
OR libvirt-daemon-driver-storage-rbd-6.0.0-13.8 is installed
OR libvirt-daemon-driver-storage-scsi-6.0.0-13.8 is installed
OR libvirt-daemon-hooks-6.0.0-13.8 is installed
OR libvirt-daemon-lxc-6.0.0-13.8 is installed
OR libvirt-daemon-qemu-6.0.0-13.8 is installed
OR libvirt-daemon-xen-6.0.0-13.8 is installed
OR libvirt-devel-6.0.0-13.8 is installed
OR libvirt-doc-6.0.0-13.8 is installed
OR libvirt-lock-sanlock-6.0.0-13.8 is installed
OR libvirt-nss-6.0.0-13.8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP2 is installed
AND squid-2.7.STABLE5-2.10.1 is installed
|
| Definition Synopsis |
| Release Information
SUSE Linux Enterprise Server 11 SP3 is installed
AND
librsvg-2.26.0-2.5.1 is installed
OR librsvg-32bit-2.26.0-2.5.1 is installed
OR librsvg-x86-2.26.0-2.5.1 is installed
OR rsvg-view-2.26.0-2.5.1 is installed
OR Package Information
SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
AND
librsvg-2.26.0-2.5.1 is installed
OR librsvg-32bit-2.26.0-2.5.1 is installed
OR librsvg-x86-2.26.0-2.5.1 is installed
OR rsvg-view-2.26.0-2.5.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP3 is installed
AND Package Information
MozillaFirefox-17.0.4esr-0.10.42 is installed
OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 is installed
AND Package Information
java-1_7_0-openjdk-1.7.0.71-6.2 is installed
OR java-1_7_0-openjdk-demo-1.7.0.71-6.2 is installed
OR java-1_7_0-openjdk-devel-1.7.0.71-6.2 is installed
OR java-1_7_0-openjdk-headless-1.7.0.71-6.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
java-1_7_1-ibm-1.7.1_sr3.20-18.1 is installed
OR java-1_7_1-ibm-alsa-1.7.1_sr3.20-18.1 is installed
OR java-1_7_1-ibm-jdbc-1.7.1_sr3.20-18.1 is installed
OR java-1_7_1-ibm-plugin-1.7.1_sr3.20-18.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
alsa-1.0.27.2-11 is installed
OR alsa-docs-1.0.27.2-11 is installed
OR libasound2-1.0.27.2-11 is installed
OR libasound2-32bit-1.0.27.2-11 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-36 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
apache2-2.4.23-29.24 is installed
OR apache2-doc-2.4.23-29.24 is installed
OR apache2-example-pages-2.4.23-29.24 is installed
OR apache2-prefork-2.4.23-29.24 is installed
OR apache2-utils-2.4.23-29.24 is installed
OR apache2-worker-2.4.23-29.24 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12-LTSS is installed
AND Package Information
kgraft-patch-3_12_55-52_42-default-2-2.2 is installed
OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed
OR kgraft-patch-SLE12_Update_12-2-2.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
AND Package Information
libX11-1.6.2-8 is installed
OR libX11-6-1.6.2-8 is installed
OR libX11-data-1.6.2-8 is installed
OR libX11-xcb1-1.6.2-8 is installed
OR libXfixes-5.0.1-7 is installed
OR libXfixes3-5.0.1-7 is installed
OR libXi-1.7.4-14 is installed
OR libXi6-1.7.4-14 is installed
OR libXrender-0.9.8-7 is installed
OR libXrender1-0.9.8-7 is installed
OR libXtst-1.2.2-7 is installed
OR libXtst6-1.2.2-7 is installed
OR libXv-1.0.10-7 is installed
OR libXv1-1.0.10-7 is installed
OR libXvMC-1.0.8-7 is installed
OR libXvMC1-1.0.8-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
AND Package Information
GraphicsMagick-1.2.5-4.35.1 is installed
OR libGraphicsMagick2-1.2.5-4.35.1 is installed
OR perl-GraphicsMagick-1.2.5-4.35.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND Package Information
binutils-devel-2.25.0-13 is installed
OR binutils-gold-2.25.0-13 is installed
OR cross-ppc-binutils-2.25.0-13 is installed
OR cross-spu-binutils-2.25.0-13 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
AND Package Information
DirectFB-devel-1.7.1-6 is installed
OR lib++dfb-devel-1.7.1-6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
AND Package Information
DirectFB-devel-1.7.1-6 is installed
OR lib++dfb-devel-1.7.1-6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 is installed
AND Package Information
libssh-0.6.3-4.1 is installed
OR libssh4-0.6.3-4.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
bluez-5.48-5.8 is installed
OR bluez-cups-5.48-5.8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
AND Package Information
MozillaThunderbird-60.7.2-3.43 is installed
OR MozillaThunderbird-translations-common-60.7.2-3.43 is installed
OR MozillaThunderbird-translations-other-60.7.2-3.43 is installed
|