Oval Definition:oval:org.opensuse.security:def:67170
Revision Date:2021-06-30Version:1
Title:Security update for qemu (Moderate)
Description:

This update for qemu fixes the following issues:

Security issues fixed:

- CVE-2021-3546: Fix out-of-bounds write in virgl_cmd_get_capset (bsc#1185981) - CVE-2021-3544: Fix memory leaks found in the virtio vhost-user GPU device (bsc#1186010) - CVE-2021-3545: Fix information disclosure due to uninitialized memory read (bsc#1185990)

Non-security issues fixed:

- Fix testsuite error (bsc#1184574) - Fix qemu crash with iothread when block commit after snapshot (bsc#1187013) - Fix qemu hang while cancelling migrating hugepage vm (bsc#1185591) - Use RCU to avoid race during scsi hotplug/hotunplug (bsc#1184574)
Family:unixClass:patch
Status:Reference(s):1172021
1174154
1184574
1185591
1185981
1185990
1186010
1187013
CVE-2019-19956
CVE-2020-15719
CVE-2021-3544
CVE-2021-3545
CVE-2021-3546
Platform(s):SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • libxml2-2.9.7-3.22 is installed
  • OR libxml2-devel-32bit-2.9.7-3.22 is installed
  • OR libxml2-doc-2.9.7-3.22 is installed
    • BACK