Oval Definition:
oval:org.opensuse.security:def:66968
Revision Date
:
2021-11-03
Version
:
1
Title
:
Security update for qemu (Important)
Description
:
This update for qemu fixes the following issues:
Security issues fixed:
- CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938)
Non-security issues fixed:
- Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1178171
1189234
1189702
1189938
1190425
945190
CVE-2014-3577
CVE-2015-0848
CVE-2015-4588
CVE-2015-4695
CVE-2015-4696
CVE-2015-5262
CVE-2021-3713
CVE-2021-3748
SUSE-SU-2020:3152-1
Platform(s)
:
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Workstation Extension 15 SP2
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
AND
apache-commons-httpclient-3.1-11.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
AND
Package Information
libwmf-0_2-7-0.2.8.4-2 is installed
OR
libwmf-devel-0.2.8.4-2 is installed
OR
libwmf-gnome-0.2.8.4-2 is installed
BACK