| Revision Date: | 2021-11-03 | Version: | 1 |
| Title: | Security update for qemu (Important) |
| Description: |
This update for qemu fixes the following issues:
Security issues fixed:
- CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938)
Non-security issues fixed:
- Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1132091
1173786
1177351
1177352
1189234
1189702
1189938
1190425
CVE-2019-11023
CVE-2020-7069
CVE-2020-7070
CVE-2021-3713
CVE-2021-3748
SUSE-SU-2019:1267-3
|
| Platform(s): | SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information
graphviz-addons-2.40.1-6.3 is installed
OR graphviz-gnome-2.40.1-6.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
AND Package Information
php7-7.2.5-4.67 is installed
OR php7-pear-Archive_Tar-7.2.5-4.67 is installed
OR php7-wddx-7.2.5-4.67 is installed
|