Oval Definition:	oval:org.opensuse.security:def:64793
Revision Date: 2021-11-03 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938) Non-security issues fixed: - Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234) Family: unix Class: patch Status: Reference(s): 1129180 1129186 1134156 1140359 1146882 1146884 1163749 1169978 1173258 1173902 1173994 1175505 1177613 1189234 1189702 1189938 1190425 CVE-2009-2694 CVE-2009-2703 CVE-2009-3026 CVE-2009-3083 CVE-2009-3084 CVE-2009-3085 CVE-2009-3615 CVE-2010-0013 CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 CVE-2010-1624 CVE-2010-2528 CVE-2010-3711 CVE-2011-1091 CVE-2011-3594 CVE-2012-2214 CVE-2012-3374 CVE-2012-6152 CVE-2013-0271 CVE-2013-0272 CVE-2013-0273 CVE-2013-0274 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6486 CVE-2013-6487 CVE-2014-0020 CVE-2014-3694 CVE-2014-3695 CVE-2014-3696 CVE-2014-3697 CVE-2014-3698 CVE-2017-2640 CVE-2019-12973 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-3835 CVE-2019-3839 CVE-2020-14318 CVE-2020-14323 CVE-2020-14383 CVE-2020-6556 CVE-2020-7106 CVE-2020-8903 CVE-2020-8907 CVE-2020-8933 CVE-2021-3713 CVE-2021-3748 openSUSE-SU-2020:0654-1 openSUSE-SU-2020:0996-1 openSUSE-SU-2020:1263-1 openSUSE-SU-2020:1819-1 SUSE-SU-2019:2460-1 SUSE-SU-2021:3605-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information cacti-1.2.12-8 is installed OR cacti-spine-1.2.12-5 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information chromedriver-84.0.4147.135-lp152.2.17 is installed OR chromium-84.0.4147.135-lp152.2.17 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND qemu-tools-5.2.0-106.4 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information ghostscript-9.27-3.21 is installed OR ghostscript-devel-9.27-3.21 is installed OR ghostscript-x11-9.27-3.21 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libpurple-2.13.0-3 is installed OR libpurple-branding-upstream-2.13.0-3 is installed OR libpurple-devel-2.13.0-3 is installed OR libpurple-lang-2.13.0-3 is installed OR libpurple-plugin-sametime-2.13.0-3 is installed OR pidgin-2.13.0-3 is installed OR pidgin-devel-2.13.0-3 is installed
BACK