| Revision Date: | 2021-04-22 | Version: | 1 |
| Title: | Security update for qemu (Important) |
| Description: |
This update for qemu fixes the following issues:
- Fix OOB access in sm501 device emulation (CVE-2020-12829, bsc#1172385) - Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation (CVE-2020-13362 bsc#1172383) - Fix use-after-free in usb xhci packet handling (CVE-2020-25723, bsc#1178934) - Fix use-after-free in usb ehci packet handling (CVE-2020-25084, bsc#1176673) - Fix OOB access in usb hcd-ohci emulation (CVE-2020-25624, bsc#1176682) - Fix infinite loop (DoS) in usb hcd-ohci emulation (CVE-2020-25625, bsc#1176684) - Fix guest triggerable assert in shared network handling code (CVE-2020-27617, bsc#1178174) - Fix OOB access in atapi emulation (CVE-2020-29443, bsc#1181108) - Fix null pointer deref. (DoS) in mmio ops (CVE-2020-15469, bsc#1173612) - Fix infinite loop (DoS) in e1000 device emulation (CVE-2021-20257, bsc#1182577) - Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968) - Fix OOB access (stack overflow) in other NIC emulations (CVE-2021-3416) - Fix OOB access in SLIRP ARP packet processing (CVE-2020-29130, bsc#1179467) - Fix null pointer dereference possibility (DoS) in MegaRAID SAS 8708EM2 emulation (CVE-2020-13659 bsc#1172386 - Fix OOB access in iscsi (CVE-2020-11947 bsc#1180523) - Fix OOB access in vmxnet3 emulation (CVE-2021-20203 bsc#1181639) - Fix buffer overflow in the XGMAC device (CVE-2020-15863 bsc#1174386) - Fix DoS in packet processing of various emulated NICs (CVE-2020-16092 bsc#1174641) - Fix OOB access while processing USB packets (CVE-2020-14364 bsc#1175441) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - Fix potential privilege escalation in virtfs (CVE-2021-20181 bsc#1182137) - Fix OOB access possibility in ES1370 audio device emulation (CVE-2020-13361 bsc#1172384) - Fix OOB access in ROM loading (CVE-2020-13765 bsc#1172478)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1034674
1034678
1053431
1067203
1072193
1077999
1087932
1088268
1090036
1096564
1097108
1099306
1122293
1122299
1128829
1128963
1132728
1132729
1132732
1133135
1172383
1172384
1172385
1172386
1172478
1173612
1174386
1174641
1175441
1176673
1176682
1176684
1178174
1178934
1179467
1180523
1181108
1181639
1182137
1182425
1182577
1182968
792444
918995
918998
919341
919464
920160
922705
922706
923945
929629
934524
934525
934526
934527
934528
934529
952099
953516
953521
955762
957812
962052
981049
981050
981061
982009
982010
982011
982012
982013
990636
CVE-2008-1686
CVE-2012-5611
CVE-2012-5612
CVE-2012-5613
CVE-2012-5615
CVE-2012-6698
CVE-2012-6699
CVE-2012-6700
CVE-2013-7456
CVE-2014-8146
CVE-2014-8147
CVE-2014-9638
CVE-2014-9639
CVE-2014-9640
CVE-2014-9687
CVE-2014-9709
CVE-2014-9732
CVE-2014-9756
CVE-2015-2044
CVE-2015-2045
CVE-2015-2151
CVE-2015-2756
CVE-2015-3195
CVE-2015-4467
CVE-2015-4468
CVE-2015-4469
CVE-2015-4470
CVE-2015-4471
CVE-2015-4472
CVE-2015-6749
CVE-2015-7805
CVE-2015-8876
CVE-2015-8877
CVE-2015-8879
CVE-2016-1000031
CVE-2016-1572
CVE-2016-5093
CVE-2016-5094
CVE-2016-5095
CVE-2016-5096
CVE-2016-6293
CVE-2017-0861
CVE-2017-10053
CVE-2017-10067
CVE-2017-10074
CVE-2017-10078
CVE-2017-10081
CVE-2017-10087
CVE-2017-10089
CVE-2017-10090
CVE-2017-10096
CVE-2017-10101
CVE-2017-10102
CVE-2017-10105
CVE-2017-10107
CVE-2017-10108
CVE-2017-10109
CVE-2017-10110
CVE-2017-10111
CVE-2017-10115
CVE-2017-10116
CVE-2017-10125
CVE-2017-10243
CVE-2017-11600
CVE-2017-14952
CVE-2017-15422
CVE-2017-17484
CVE-2017-7867
CVE-2017-7868
CVE-2018-1000199
CVE-2018-10853
CVE-2018-11212
CVE-2018-3639
CVE-2018-3646
CVE-2019-2422
CVE-2019-2426
CVE-2019-2602
CVE-2019-2684
CVE-2019-2698
CVE-2020-11947
CVE-2020-12829
CVE-2020-13361
CVE-2020-13362
CVE-2020-13659
CVE-2020-13765
CVE-2020-14364
CVE-2020-15469
CVE-2020-15863
CVE-2020-16092
CVE-2020-25084
CVE-2020-25624
CVE-2020-25625
CVE-2020-25723
CVE-2020-27617
CVE-2020-29130
CVE-2020-29443
CVE-2021-20181
CVE-2021-20203
CVE-2021-20257
CVE-2021-3416
SUSE-SU-2015:0747-1
SUSE-SU-2015:0835-1
SUSE-SU-2015:1979-1
SUSE-SU-2015:2174-1
SUSE-SU-2015:2275-1
SUSE-SU-2016:0011-1
SUSE-SU-2016:0241-1
SUSE-SU-2016:1633-1
SUSE-SU-2017:2263-1
SUSE-SU-2018:1269-1
SUSE-SU-2018:2350-1
SUSE-SU-2019:1214-1
SUSE-SU-2019:1219-1
SUSE-SU-2021:1305-1
|
| Platform(s): | openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP2-LTSS-ERICSSON
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.0 is installed AND Package Information
gstreamer-plugins-good-1.12.5-lp150.1 is installed
OR gstreamer-plugins-good-lang-1.12.5-lp150.1 is installed
|
| Definition Synopsis |
| openSUSE Leap 15.1 is installed
AND Package Information
elfutils-0.168-lp151.4.3 is installed
OR elfutils-lang-0.168-lp151.4.3 is installed
OR libasm-devel-0.168-lp151.4.3 is installed
OR libasm1-0.168-lp151.4.3 is installed
OR libasm1-32bit-0.168-lp151.4.3 is installed
OR libdw-devel-0.168-lp151.4.3 is installed
OR libdw1-0.168-lp151.4.3 is installed
OR libdw1-32bit-0.168-lp151.4.3 is installed
OR libebl-devel-0.168-lp151.4.3 is installed
OR libebl-plugins-0.168-lp151.4.3 is installed
OR libebl-plugins-32bit-0.168-lp151.4.3 is installed
OR libelf-devel-0.168-lp151.4.3 is installed
OR libelf-devel-32bit-0.168-lp151.4.3 is installed
OR libelf1-0.168-lp151.4.3 is installed
OR libelf1-32bit-0.168-lp151.4.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP2 is installed
AND Package Information
libmysqlclient15-5.0.96-0.6 is installed
OR libmysqlclient15-32bit-5.0.96-0.6 is installed
OR libmysqlclient_r15-5.0.96-0.6 is installed
OR libmysqlclient_r15-32bit-5.0.96-0.6 is installed
OR mysql-5.0.96-0.6 is installed
OR mysql-client-5.0.96-0.6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP3 is installed
AND dhcpcd-3.2.3-45.5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP4 is installed
AND Package Information
libopenssl0_9_8-0.9.8j-0.80 is installed
OR libopenssl0_9_8-32bit-0.9.8j-0.80 is installed
OR openssl-0.9.8j-0.80 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
libmspack-0.4-14 is installed
OR libmspack0-0.4-14 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
vorbis-tools-1.4.0-26 is installed
OR vorbis-tools-lang-1.4.0-26 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND Package Information
java-1_8_0-ibm-1.8.0_sr4.10-30.5 is installed
OR java-1_8_0-ibm-alsa-1.8.0_sr4.10-30.5 is installed
OR java-1_8_0-ibm-devel-1.8.0_sr4.10-30.5 is installed
OR java-1_8_0-ibm-plugin-1.8.0_sr4.10-30.5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND ft2demos-2.6.3-7.8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND Package Information
python3-rpm-4.11.2-16.21 is installed
OR rpm-4.11.2-16.21 is installed
OR rpm-32bit-4.11.2-16.21 is installed
OR rpm-build-4.11.2-16.21 is installed
OR rpm-python-4.11.2-16.21 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
kernel-default-4.4.121-92.104 is installed
OR kernel-default-base-4.4.121-92.104 is installed
OR kernel-default-devel-4.4.121-92.104 is installed
OR kernel-devel-4.4.121-92.104 is installed
OR kernel-macros-4.4.121-92.104 is installed
OR kernel-source-4.4.121-92.104 is installed
OR kernel-syms-4.4.121-92.104 is installed
OR kgraft-patch-4_4_121-92_104-default-1-3.3 is installed
OR kgraft-patch-SLE12-SP2_Update_28-1-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND Package Information
java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
libXrender1-0.9.8-7 is installed
OR libXrender1-32bit-0.9.8-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-BCL is installed
AND Package Information
adns-1.4-103.3 is installed
OR libadns1-1.4-103.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND squid-3.5.21-26.23 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
libX11-1.6.2-12.5 is installed
OR libX11-6-1.6.2-12.5 is installed
OR libX11-6-32bit-1.6.2-12.5 is installed
OR libX11-data-1.6.2-12.5 is installed
OR libX11-xcb1-1.6.2-12.5 is installed
OR libX11-xcb1-32bit-1.6.2-12.5 is installed
OR libxcb-1.10-4.3 is installed
OR libxcb-dri2-0-1.10-4.3 is installed
OR libxcb-dri2-0-32bit-1.10-4.3 is installed
OR libxcb-dri3-0-1.10-4.3 is installed
OR libxcb-dri3-0-32bit-1.10-4.3 is installed
OR libxcb-glx0-1.10-4.3 is installed
OR libxcb-glx0-32bit-1.10-4.3 is installed
OR libxcb-present0-1.10-4.3 is installed
OR libxcb-present0-32bit-1.10-4.3 is installed
OR libxcb-randr0-1.10-4.3 is installed
OR libxcb-render0-1.10-4.3 is installed
OR libxcb-render0-32bit-1.10-4.3 is installed
OR libxcb-shape0-1.10-4.3 is installed
OR libxcb-shm0-1.10-4.3 is installed
OR libxcb-shm0-32bit-1.10-4.3 is installed
OR libxcb-sync1-1.10-4.3 is installed
OR libxcb-sync1-32bit-1.10-4.3 is installed
OR libxcb-xf86dri0-1.10-4.3 is installed
OR libxcb-xfixes0-1.10-4.3 is installed
OR libxcb-xfixes0-32bit-1.10-4.3 is installed
OR libxcb-xinerama0-1.10-4.3 is installed
OR libxcb-xkb1-1.10-4.3 is installed
OR libxcb-xkb1-32bit-1.10-4.3 is installed
OR libxcb-xv0-1.10-4.3 is installed
OR libxcb1-1.10-4.3 is installed
OR libxcb1-32bit-1.10-4.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
colord-gtk-lang-0.1.26-6 is installed
OR libcolord-gtk1-0.1.26-6 is installed
OR libcolord2-1.3.3-12 is installed
OR libcolord2-32bit-1.3.3-12 is installed
OR libcolorhug2-1.3.3-12 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 6 is installed
AND Package Information
icu-52.1-8.7 is installed
OR libicu-doc-52.1-8.7 is installed
OR libicu52_1-52.1-8.7 is installed
OR libicu52_1-32bit-52.1-8.7 is installed
OR libicu52_1-data-52.1-8.7 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 7 is installed
AND Package Information
java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed
OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed
OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed
OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 8 is installed
AND Package Information
libexif-0.6.22-8.9 is installed
OR libexif12-0.6.22-8.9 is installed
OR libexif12-32bit-0.6.22-8.9 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 9 is installed
AND python-Twisted-15.2.1-9.8 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud Crowbar 8 is installed
AND python-urllib3-1.22-5.6 is installed
|