Security update for qemu SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2021:0600-1 Final 1 1 2021-04-23T10:46:42Z current 2021-04-23T10:46:42Z 2021-04-23T10:46:42Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for qemu This update for qemu fixes the following issues: - CVE-2020-12829: Fix OOB access in sm501 device emulation (bsc#1172385) - CVE-2020-25723: Fix use-after-free in usb xhci packet handling (bsc#1178934) - CVE-2020-25084: Fix use-after-free in usb ehci packet handling (bsc#1176673) - CVE-2020-25625: Fix infinite loop (DoS) in usb hcd-ohci emulation (bsc#1176684) - CVE-2020-25624: Fix OOB access in usb hcd-ohci emulation (bsc#1176682) - CVE-2020-27617: Fix guest triggerable assert in shared network handling code (bsc#1178174) - CVE-2020-28916: Fix infinite loop (DoS) in e1000e device emulation (bsc#1179468) - CVE-2020-29443: Fix OOB access in atapi emulation (bsc#1181108) - CVE-2020-27821: Fix heap overflow in MSIx emulation (bsc#1179686) - CVE-2020-15469: Fix null pointer deref. (DoS) in mmio ops (bsc#1173612) - CVE-2021-20257: Fix infinite loop (DoS) in e1000 device emulation (bsc#1182577) - CVE-2021-3416: Fix OOB access (stack overflow) in rtl8139 NIC emulation (bsc#1182968) - CVE-2021-3416: Fix OOB access (stack overflow) in other NIC emulations (bsc#1182968) - CVE-2020-27616: Fix OOB access in ati-vga emulation (bsc#1178400) - CVE-2020-29129: Fix OOB access in SLIRP ARP/NCSI packet processing (bsc#1179466, CVE-2020-29130, bsc#1179467) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - Add split-provides through forsplits/13 to cover updates of SLE15-SP2 to SLE15-SP3, and openSUSE equivalents (bsc#1184064) - Added a few more usability improvements for our git packaging workflow This update was imported from the SUSE:SLE-15-SP2:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2021-600 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ E-Mail link for openSUSE-SU-2021:0600-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1172385 SUSE Bug 1172385 https://bugzilla.suse.com/1173612 SUSE Bug 1173612 https://bugzilla.suse.com/1176673 SUSE Bug 1176673 https://bugzilla.suse.com/1176682 SUSE Bug 1176682 https://bugzilla.suse.com/1176684 SUSE Bug 1176684 https://bugzilla.suse.com/1178174 SUSE Bug 1178174 https://bugzilla.suse.com/1178400 SUSE Bug 1178400 https://bugzilla.suse.com/1178934 SUSE Bug 1178934 https://bugzilla.suse.com/1179466 SUSE Bug 1179466 https://bugzilla.suse.com/1179467 SUSE Bug 1179467 https://bugzilla.suse.com/1179468 SUSE Bug 1179468 https://bugzilla.suse.com/1179686 SUSE Bug 1179686 https://bugzilla.suse.com/1181108 SUSE Bug 1181108 https://bugzilla.suse.com/1182425 SUSE Bug 1182425 https://bugzilla.suse.com/1182577 SUSE Bug 1182577 https://bugzilla.suse.com/1182968 SUSE Bug 1182968 https://bugzilla.suse.com/1184064 SUSE Bug 1184064 https://www.suse.com/security/cve/CVE-2020-12829/ SUSE CVE CVE-2020-12829 page https://www.suse.com/security/cve/CVE-2020-15469/ SUSE CVE CVE-2020-15469 page https://www.suse.com/security/cve/CVE-2020-25084/ SUSE CVE CVE-2020-25084 page https://www.suse.com/security/cve/CVE-2020-25624/ SUSE CVE CVE-2020-25624 page https://www.suse.com/security/cve/CVE-2020-25625/ SUSE CVE CVE-2020-25625 page https://www.suse.com/security/cve/CVE-2020-25723/ SUSE CVE CVE-2020-25723 page https://www.suse.com/security/cve/CVE-2020-27616/ SUSE CVE CVE-2020-27616 page https://www.suse.com/security/cve/CVE-2020-27617/ SUSE CVE CVE-2020-27617 page https://www.suse.com/security/cve/CVE-2020-27821/ SUSE CVE CVE-2020-27821 page https://www.suse.com/security/cve/CVE-2020-28916/ SUSE CVE CVE-2020-28916 page https://www.suse.com/security/cve/CVE-2020-29129/ SUSE CVE CVE-2020-29129 page https://www.suse.com/security/cve/CVE-2020-29130/ SUSE CVE CVE-2020-29130 page https://www.suse.com/security/cve/CVE-2020-29443/ SUSE CVE CVE-2020-29443 page https://www.suse.com/security/cve/CVE-2021-20257/ SUSE CVE CVE-2021-20257 page https://www.suse.com/security/cve/CVE-2021-3416/ SUSE CVE CVE-2021-3416 page openSUSE Leap 15.2 qemu-4.2.1-lp152.9.12.1 qemu-arm-4.2.1-lp152.9.12.1 qemu-audio-alsa-4.2.1-lp152.9.12.1 qemu-audio-pa-4.2.1-lp152.9.12.1 qemu-audio-sdl-4.2.1-lp152.9.12.1 qemu-block-curl-4.2.1-lp152.9.12.1 qemu-block-dmg-4.2.1-lp152.9.12.1 qemu-block-gluster-4.2.1-lp152.9.12.1 qemu-block-iscsi-4.2.1-lp152.9.12.1 qemu-block-nfs-4.2.1-lp152.9.12.1 qemu-block-rbd-4.2.1-lp152.9.12.1 qemu-block-ssh-4.2.1-lp152.9.12.1 qemu-extra-4.2.1-lp152.9.12.1 qemu-guest-agent-4.2.1-lp152.9.12.1 qemu-ipxe-1.0.0+-lp152.9.12.1 qemu-ksm-4.2.1-lp152.9.12.1 qemu-kvm-4.2.1-lp152.9.12.1 qemu-lang-4.2.1-lp152.9.12.1 qemu-linux-user-4.2.1-lp152.9.12.1 qemu-microvm-4.2.1-lp152.9.12.1 qemu-ppc-4.2.1-lp152.9.12.1 qemu-s390-4.2.1-lp152.9.12.1 qemu-seabios-1.12.1+-lp152.9.12.1 qemu-sgabios-8-lp152.9.12.1 qemu-testsuite-4.2.1-lp152.9.12.1 qemu-tools-4.2.1-lp152.9.12.1 qemu-ui-curses-4.2.1-lp152.9.12.1 qemu-ui-gtk-4.2.1-lp152.9.12.1 qemu-ui-sdl-4.2.1-lp152.9.12.1 qemu-ui-spice-app-4.2.1-lp152.9.12.1 qemu-vgabios-1.12.1+-lp152.9.12.1 qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 qemu-x86-4.2.1-lp152.9.12.1 qemu-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-arm-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-audio-alsa-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-audio-pa-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-audio-sdl-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-block-curl-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-block-dmg-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-block-gluster-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-block-iscsi-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-block-nfs-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-block-rbd-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-block-ssh-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-extra-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-guest-agent-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-ipxe-1.0.0+-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-ksm-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-kvm-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-lang-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-linux-user-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-microvm-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-ppc-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-s390-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-seabios-1.12.1+-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-sgabios-8-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-testsuite-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-tools-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-ui-curses-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-ui-gtk-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-ui-sdl-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-ui-spice-app-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-vgabios-1.12.1+-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 qemu-x86-4.2.1-lp152.9.12.1 as a component of openSUSE Leap 15.2 In QEMU through 5.0.0, an integer overflow was found in the SM501 display driver implementation. This flaw occurs in the COPY_AREA macro while handling MMIO write operations through the sm501_2d_engine_write() callback. A local attacker could abuse this flaw to crash the QEMU process in sm501_2d_operation() in hw/display/sm501.c on the host, resulting in a denial of service. CVE-2020-12829 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 moderate 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-12829.html CVE-2020-12829 https://bugzilla.suse.com/1172385 SUSE Bug 1172385 In QEMU 4.2.0, a MemoryRegionOps object may lack read/write callback methods, leading to a NULL pointer dereference. CVE-2020-15469 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 moderate 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-15469.html CVE-2020-15469 https://bugzilla.suse.com/1173612 SUSE Bug 1173612 QEMU 5.0.0 has a use-after-free in hw/usb/hcd-xhci.c because the usb_packet_map return value is not checked. CVE-2020-25084 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 moderate 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-25084.html CVE-2020-25084 https://bugzilla.suse.com/1176673 SUSE Bug 1176673 hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver. CVE-2020-25624 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-25624.html CVE-2020-25624 https://bugzilla.suse.com/1176682 SUSE Bug 1176682 hw/usb/hcd-ohci.c in QEMU 5.0.0 has an infinite loop when a TD list has a loop. CVE-2020-25625 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 low 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-25625.html CVE-2020-25625 https://bugzilla.suse.com/1176684 SUSE Bug 1176684 A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on the host, resulting in a denial of service. CVE-2020-25723 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 low 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-25723.html CVE-2020-25723 https://bugzilla.suse.com/1178934 SUSE Bug 1178934 https://bugzilla.suse.com/1178935 SUSE Bug 1178935 ati_2d_blt in hw/display/ati_2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation. A guest can crash the QEMU process. CVE-2020-27616 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 low 4 AV:N/AC:L/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-27616.html CVE-2020-27616 https://bugzilla.suse.com/1178400 SUSE Bug 1178400 https://bugzilla.suse.com/1188609 SUSE Bug 1188609 eth_get_gso_type in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure. A guest can crash the QEMU process via packet data that lacks a valid Layer 3 protocol. CVE-2020-27617 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-27617.html CVE-2020-27617 https://bugzilla.suse.com/1178174 SUSE Bug 1178174 A flaw was found in the memory management API of QEMU during the initialization of a memory region cache. This issue could lead to an out-of-bounds write access to the MSI-X table while performing MMIO operations. A guest user may abuse this flaw to crash the QEMU process on the host, resulting in a denial of service. This flaw affects QEMU versions prior to 5.2.0. CVE-2020-27821 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 moderate 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-27821.html CVE-2020-27821 https://bugzilla.suse.com/1179686 SUSE Bug 1179686 hw/net/e1000e_core.c in QEMU 5.0.0 has an infinite loop via an RX descriptor with a NULL buffer address. CVE-2020-28916 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 moderate 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-28916.html CVE-2020-28916 https://bugzilla.suse.com/1178683 SUSE Bug 1178683 https://bugzilla.suse.com/1179468 SUSE Bug 1179468 ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length. CVE-2020-29129 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 low 4 AV:N/AC:L/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-29129.html CVE-2020-29129 https://bugzilla.suse.com/1179466 SUSE Bug 1179466 https://bugzilla.suse.com/1179467 SUSE Bug 1179467 https://bugzilla.suse.com/1179477 SUSE Bug 1179477 https://bugzilla.suse.com/1179484 SUSE Bug 1179484 slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length. CVE-2020-29130 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 moderate 4 AV:N/AC:L/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-29130.html CVE-2020-29130 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1179467 SUSE Bug 1179467 https://bugzilla.suse.com/1179477 SUSE Bug 1179477 ide_atapi_cmd_reply_end in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access because a buffer index is not validated. CVE-2020-29443 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 low 3.3 AV:L/AC:M/Au:N/C:P/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2020-29443.html CVE-2020-29443 https://bugzilla.suse.com/1181108 SUSE Bug 1181108 An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability. CVE-2021-20257 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 low 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2021-20257.html CVE-2021-20257 https://bugzilla.suse.com/1182577 SUSE Bug 1182577 https://bugzilla.suse.com/1182846 SUSE Bug 1182846 A potential stack overflow via infinite loop issue was found in various NIC emulators of QEMU in versions up to and including 5.2.0. The issue occurs in loopback mode of a NIC wherein reentrant DMA checks get bypassed. A guest user/process may use this flaw to consume CPU cycles or crash the QEMU process on the host resulting in DoS scenario. CVE-2021-3416 openSUSE Leap 15.2:qemu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-arm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-alsa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-pa-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-audio-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-curl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-dmg-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-gluster-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-iscsi-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-nfs-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-rbd-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-block-ssh-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-extra-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-guest-agent-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ipxe-1.0.0+-lp152.9.12.1 openSUSE Leap 15.2:qemu-ksm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-kvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-lang-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-linux-user-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-microvm-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ppc-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-s390-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-seabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-sgabios-8-lp152.9.12.1 openSUSE Leap 15.2:qemu-testsuite-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-tools-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-curses-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-gtk-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-sdl-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-ui-spice-app-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-vgabios-1.12.1+-lp152.9.12.1 openSUSE Leap 15.2:qemu-vhost-user-gpu-4.2.1-lp152.9.12.1 openSUSE Leap 15.2:qemu-x86-4.2.1-lp152.9.12.1 low 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATYM36RK6JXDXZ33F2KFHZHDZ3F3YD24/ https://www.suse.com/security/cve/CVE-2021-3416.html CVE-2021-3416 https://bugzilla.suse.com/1182968 SUSE Bug 1182968 https://bugzilla.suse.com/1186473 SUSE Bug 1186473