Oval Definition:
oval:org.opensuse.security:def:67305
Revision Date
:
2021-11-03
Version
:
1
Title
:
Security update for qemu (Important)
Description
:
This update for qemu fixes the following issues:
Security issues fixed:
- CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938)
Non-security issues fixed:
- Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1132091
1173786
1177351
1177352
1189234
1189702
1189938
1190425
CVE-2019-11023
CVE-2020-7069
CVE-2020-7070
CVE-2021-3713
CVE-2021-3748
SUSE-SU-2019:1267-3
Platform(s)
:
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed
AND
Package Information
graphviz-addons-2.40.1-6.3 is installed
OR
graphviz-gnome-2.40.1-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
AND
Package Information
php7-7.2.5-4.67 is installed
OR
php7-pear-Archive_Tar-7.2.5-4.67 is installed
OR
php7-wddx-7.2.5-4.67 is installed
BACK