Oval Definition:oval:org.opensuse.security:def:67204
Revision Date:2021-08-02Version:1
Title:Security update for qemu (Important)
Description:

This update for qemu fixes the following issues:

Security issues fixed:

- CVE-2021-3595: Fixed slirp: invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366) - CVE-2021-3592: Fix for slirp: invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364) - CVE-2021-3594: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367) - CVE-2021-3593: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp6) (bsc#1187365) - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) - CVE-2020-25085: Fix out-of-bounds access issue while doing multi block SDMA (bsc#1176681)

Other issues fixed:

- QEMU BIOS fails to read stage2 loader (on s390x)(bsc#1186290) - Fix qemu hang while cancelling migrating hugepage vm (bsc#1185591)

Family:unixClass:patch
Status:Reference(s):1100369
1109160
1118367
1118368
1128220
1156205
1157051
1161168
1170667
1170713
1171313
1171437
1171740
1172307
1172958
1173159
1173160
1173161
1173307
1173311
1173359
1173983
1175443
1176092
1176674
1176681
1185591
1186290
1187364
1187365
1187366
1187367
1187499
1187529
1187538
1187539
906079
CVE-2017-3136
CVE-2018-5741
CVE-2019-6477
CVE-2020-10730
CVE-2020-10745
CVE-2020-10760
CVE-2020-14303
CVE-2020-25085
CVE-2020-8616
CVE-2020-8617
CVE-2020-8618
CVE-2020-8619
CVE-2020-8620
CVE-2020-8621
CVE-2020-8622
CVE-2020-8623
CVE-2020-8624
CVE-2021-3582
CVE-2021-3592
CVE-2021-3593
CVE-2021-3594
CVE-2021-3595
CVE-2021-3607
CVE-2021-3608
CVE-2021-3611
Platform(s):SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • libsamba-policy-python-devel-4.9.5+git.343.4bc358522a9-3.38 is installed
  • OR libsamba-policy0-4.9.5+git.343.4bc358522a9-3.38 is installed
  • OR libsamba-policy0-32bit-4.9.5+git.343.4bc358522a9-3.38 is installed
  • OR samba-4.9.5+git.343.4bc358522a9-3.38 is installed
  • OR samba-libs-python-4.9.5+git.343.4bc358522a9-3.38 is installed
  • OR samba-libs-python-32bit-4.9.5+git.343.4bc358522a9-3.38 is installed
  • OR samba-python-4.9.5+git.343.4bc358522a9-3.38 is installed
    • BACK