Oval Definition:oval:org.opensuse.security:def:69102
Revision Date:2021-02-19Version:1
Title:Security update for qemu (Important)
Description:

This update for qemu fixes the following issues:

- Fixed potential privilege escalation in virtfs (CVE-2021-20181 bsc#1182137) - Fixed out-of-bound access in iscsi (CVE-2020-11947 bsc#1180523) - Fixed out-of-bound access in vmxnet3 emulation (CVE-2021-20203 bsc#1181639) - Fixed out-of-bound access in ARM interrupt handling (CVE-2021-20221 bsc#1181933) - Fixed vfio-pci device on s390 enters error state (bsc#1179717 bsc#1179719) - Fixed 'Failed to try-restart qemu-ga@.service' error while updating the qemu-guest-agent. (bsc#1178565) - Apply fixes to qemu scsi passthrough with respect to timeout and error conditions, including using more correct status codes. Add more qemu tracing which helped track down these issues (bsc#1178049)
Family:unixClass:patch
Status:Reference(s):1138264
1151455
1156146
1157179
1178049
1178565
1179717
1179719
1180523
1181639
1181933
1182137
CVE-2019-12817
CVE-2019-14818
CVE-2020-11947
CVE-2021-20181
CVE-2021-20203
CVE-2021-20221
SUSE-SU-2019:1769-1
SUSE-SU-2020:0439-1
SUSE-SU-2021:0521-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • dpdk-18.11.3-4.3 is installed
  • OR dpdk-doc-18.11.3-4.3 is installed
  • OR dpdk-examples-18.11.3-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_4-default-2-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_1-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • qemu-4.2.1-11.13.1 is installed
  • OR qemu-arm-4.2.1-11.13.1 is installed
  • OR qemu-audio-alsa-4.2.1-11.13.1 is installed
  • OR qemu-audio-pa-4.2.1-11.13.1 is installed
  • OR qemu-block-curl-4.2.1-11.13.1 is installed
  • OR qemu-block-iscsi-4.2.1-11.13.1 is installed
  • OR qemu-block-rbd-4.2.1-11.13.1 is installed
  • OR qemu-block-ssh-4.2.1-11.13.1 is installed
  • OR qemu-guest-agent-4.2.1-11.13.1 is installed
  • OR qemu-ipxe-1.0.0+-11.13.1 is installed
  • OR qemu-kvm-4.2.1-11.13.1 is installed
  • OR qemu-lang-4.2.1-11.13.1 is installed
  • OR qemu-microvm-4.2.1-11.13.1 is installed
  • OR qemu-ppc-4.2.1-11.13.1 is installed
  • OR qemu-s390-4.2.1-11.13.1 is installed
  • OR qemu-seabios-1.12.1+-11.13.1 is installed
  • OR qemu-sgabios-8-11.13.1 is installed
  • OR qemu-ui-curses-4.2.1-11.13.1 is installed
  • OR qemu-ui-gtk-4.2.1-11.13.1 is installed
  • OR qemu-ui-spice-app-4.2.1-11.13.1 is installed
  • OR qemu-vgabios-1.12.1+-11.13.1 is installed
  • OR qemu-x86-4.2.1-11.13.1 is installed
    • BACK