Oval Definition:oval:org.opensuse.security:def:79524
Revision Date:2019-04-16Version:1
Title:Security update for qemu (Important)
Description:

This update for qemu fixes the following issues:

Security issues fixed:

- CVE-2019-9824: Fixed information leak in slirp (bsc#1129622). - CVE-2019-8934: Added method to specify whether or not to expose certain ppc64 hostinformation (bsc#1126455). - CVE-2019-3812: Fixed Out-of-bounds memory access and information leak in virtual monitor interface (bsc#1125721). - CVE-2018-20815: Fixed a denial of service possibility in device tree processing (bsc#1130675).

Non-security issue fixed:

- Backported Skylake-Server vcpu model support from qemu v2.11 (FATE#327261 bsc#1131955). - Added ability to set virtqueue size using virtqueue_size parameter (FATE#327255 bsc#1118900).
Family:unixClass:patch
Status:Reference(s):1118900
1125721
1126455
1129622
1130675
1131955
CVE-2018-20815
CVE-2019-3812
CVE-2019-8934
CVE-2019-9824
Platform(s):SUSE Linux Enterprise Desktop 12 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • qemu-2.9.1-6.31.1 is installed
  • OR qemu-block-curl-2.9.1-6.31.1 is installed
  • OR qemu-ipxe-1.0.0+-6.31.1 is installed
  • OR qemu-kvm-2.9.1-6.31.1 is installed
  • OR qemu-seabios-1.10.2-6.31.1 is installed
  • OR qemu-sgabios-8-6.31.1 is installed
  • OR qemu-tools-2.9.1-6.31.1 is installed
  • OR qemu-vgabios-1.10.2-6.31.1 is installed
  • OR qemu-x86-2.9.1-6.31.1 is installed
    • BACK