{"affected":[{"ecosystem_specific":{"binaries":[{"qemu":"5.2.0-23.1","qemu-arm":"5.2.0-23.1","qemu-audio-alsa":"5.2.0-23.1","qemu-audio-pa":"5.2.0-23.1","qemu-audio-spice":"5.2.0-23.1","qemu-block-curl":"5.2.0-23.1","qemu-block-dmg":"5.2.0-23.1","qemu-block-gluster":"5.2.0-23.1","qemu-block-iscsi":"5.2.0-23.1","qemu-block-nfs":"5.2.0-23.1","qemu-block-rbd":"5.2.0-23.1","qemu-block-ssh":"5.2.0-23.1","qemu-chardev-baum":"5.2.0-23.1","qemu-chardev-spice":"5.2.0-23.1","qemu-extra":"5.2.0-23.1","qemu-guest-agent":"5.2.0-23.1","qemu-hw-display-qxl":"5.2.0-23.1","qemu-hw-display-virtio-gpu":"5.2.0-23.1","qemu-hw-display-virtio-gpu-pci":"5.2.0-23.1","qemu-hw-display-virtio-vga":"5.2.0-23.1","qemu-hw-s390x-virtio-gpu-ccw":"5.2.0-23.1","qemu-hw-usb-redirect":"5.2.0-23.1","qemu-hw-usb-smartcard":"5.2.0-23.1","qemu-ipxe":"1.0.0+-23.1","qemu-ivshmem-tools":"5.2.0-23.1","qemu-ksm":"5.2.0-23.1","qemu-kvm":"5.2.0-23.1","qemu-lang":"5.2.0-23.1","qemu-microvm":"5.2.0-23.1","qemu-ppc":"5.2.0-23.1","qemu-s390x":"5.2.0-23.1","qemu-seabios":"1.14.0_0_g155821a-23.1","qemu-sgabios":"8-23.1","qemu-skiboot":"5.2.0-23.1","qemu-tools":"5.2.0-23.1","qemu-ui-curses":"5.2.0-23.1","qemu-ui-gtk":"5.2.0-23.1","qemu-ui-opengl":"5.2.0-23.1","qemu-ui-spice-app":"5.2.0-23.1","qemu-ui-spice-core":"5.2.0-23.1","qemu-vgabios":"1.14.0_0_g155821a-23.1","qemu-vhost-user-gpu":"5.2.0-23.1","qemu-x86":"5.2.0-23.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"qemu","purl":"pkg:rpm/opensuse/qemu&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.2.0-23.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for qemu fixes the following issues:\n\n- CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499)\n- CVE-2021-3607: Ensure correct input on ring init (bsc#1187539)\n- CVE-2021-3608: Fix the ring init error flow (bsc#1187538)\n- CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529)\n","id":"openSUSE-SU-2021:2442-1","modified":"2021-07-21T12:01:33Z","published":"2021-07-21T12:01:33Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ER233YMIXQ2HKJ4RY4ISGXE5VKXBEVPA/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1187499"},{"type":"REPORT","url":"https://bugzilla.suse.com/1187529"},{"type":"REPORT","url":"https://bugzilla.suse.com/1187538"},{"type":"REPORT","url":"https://bugzilla.suse.com/1187539"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3582"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3607"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3608"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3611"}],"related":["CVE-2021-3582","CVE-2021-3607","CVE-2021-3608","CVE-2021-3611"],"summary":"Security update for qemu","upstream":["CVE-2021-3582","CVE-2021-3607","CVE-2021-3608","CVE-2021-3611"]}