Oval Definition:	oval:org.opensuse.security:def:73915
Revision Date: 2021-11-03 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938) Non-security issues fixed: - Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234) Family: unix Class: patch Status: Reference(s): 1174415 1178882 1189234 1189702 1189938 1190425 CVE-2020-15900 CVE-2020-8277 CVE-2021-3713 CVE-2021-3748 SUSE-SU-2021:3605-1 Platform(s): SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information ghostscript-mini-9.52-3.32 is installed OR ghostscript-mini-devel-9.52-3.32 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND qemu-tools-5.2.0-106.4 is installed
BACK