Security update for qemu SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2021:1947-1 Final 1 1 2021-06-10T10:31:38Z current 2021-06-10T10:31:38Z 2021-06-10T10:31:38Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for qemu This update for qemu fixes the following issues: - Fix OOB access during mmio operations (CVE-2020-13754, bsc#1172382) - Fix out-of-bounds read information disclosure in icmp6_send_echoreply (CVE-2020-10756, bsc#1172380) - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2020-29129, bsc#1179484, CVE-2021-20257, bsc#1182846, CVE-2021-3419, bsc#1182975) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2021-1947,SUSE-OpenStack-Cloud-9-2021-1947,SUSE-OpenStack-Cloud-Crowbar-9-2021-1947,SUSE-SLE-SAP-12-SP4-2021-1947,SUSE-SLE-SERVER-12-SP4-LTSS-2021-1947 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ Link for SUSE-SU-2021:1947-1 https://lists.suse.com/pipermail/sle-security-updates/2021-June/008990.html E-Mail link for SUSE-SU-2021:1947-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1149813 SUSE Bug 1149813 https://bugzilla.suse.com/1163019 SUSE Bug 1163019 https://bugzilla.suse.com/1172380 SUSE Bug 1172380 https://bugzilla.suse.com/1172382 SUSE Bug 1172382 https://bugzilla.suse.com/1175534 SUSE Bug 1175534 https://bugzilla.suse.com/1178683 SUSE Bug 1178683 https://bugzilla.suse.com/1178935 SUSE Bug 1178935 https://bugzilla.suse.com/1179477 SUSE Bug 1179477 https://bugzilla.suse.com/1179484 SUSE Bug 1179484 https://bugzilla.suse.com/1182846 SUSE Bug 1182846 https://bugzilla.suse.com/1182975 SUSE Bug 1182975 https://www.suse.com/security/cve/CVE-2019-15890/ SUSE CVE CVE-2019-15890 page https://www.suse.com/security/cve/CVE-2020-10756/ SUSE CVE CVE-2020-10756 page https://www.suse.com/security/cve/CVE-2020-13754/ SUSE CVE CVE-2020-13754 page https://www.suse.com/security/cve/CVE-2020-14364/ SUSE CVE CVE-2020-14364 page https://www.suse.com/security/cve/CVE-2020-25707/ SUSE CVE CVE-2020-25707 page https://www.suse.com/security/cve/CVE-2020-25723/ SUSE CVE CVE-2020-25723 page https://www.suse.com/security/cve/CVE-2020-29129/ SUSE CVE CVE-2020-29129 page https://www.suse.com/security/cve/CVE-2020-29130/ SUSE CVE CVE-2020-29130 page https://www.suse.com/security/cve/CVE-2020-8608/ SUSE CVE CVE-2020-8608 page https://www.suse.com/security/cve/CVE-2021-20257/ SUSE CVE CVE-2021-20257 page https://www.suse.com/security/cve/CVE-2021-3419/ SUSE CVE CVE-2021-3419 page SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9 qemu-2.11.2-5.32.1 qemu-arm-2.11.2-5.32.1 qemu-block-curl-2.11.2-5.32.1 qemu-block-dmg-2.11.2-5.32.1 qemu-block-iscsi-2.11.2-5.32.1 qemu-block-rbd-2.11.2-5.32.1 qemu-block-ssh-2.11.2-5.32.1 qemu-extra-2.11.2-5.32.1 qemu-guest-agent-2.11.2-5.32.1 qemu-ipxe-1.0.0+-5.32.1 qemu-kvm-2.11.2-5.32.1 qemu-lang-2.11.2-5.32.1 qemu-linux-user-2.11.2-5.32.1 qemu-ppc-2.11.2-5.32.1 qemu-s390-2.11.2-5.32.1 qemu-seabios-1.11.0_0_g63451fc-5.32.1 qemu-sgabios-8-5.32.1 qemu-tools-2.11.2-5.32.1 qemu-vgabios-1.11.0_0_g63451fc-5.32.1 qemu-x86-2.11.2-5.32.1 qemu-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-arm-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-block-curl-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-block-iscsi-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-block-rbd-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-block-ssh-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-guest-agent-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-ipxe-1.0.0+-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-kvm-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-lang-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-ppc-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-s390-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-seabios-1.11.0_0_g63451fc-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-sgabios-8-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-tools-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-vgabios-1.11.0_0_g63451fc-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-x86-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS qemu-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-block-curl-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-block-iscsi-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-block-rbd-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-block-ssh-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-guest-agent-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-ipxe-1.0.0+-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-kvm-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-lang-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-ppc-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-seabios-1.11.0_0_g63451fc-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-sgabios-8-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-tools-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-vgabios-1.11.0_0_g63451fc-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-x86-2.11.2-5.32.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 qemu-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-block-curl-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-block-iscsi-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-block-rbd-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-block-ssh-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-guest-agent-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-ipxe-1.0.0+-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-kvm-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-lang-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-seabios-1.11.0_0_g63451fc-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-sgabios-8-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-tools-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-vgabios-1.11.0_0_g63451fc-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-x86-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud 9 qemu-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-block-curl-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-block-iscsi-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-block-rbd-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-block-ssh-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-guest-agent-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-ipxe-1.0.0+-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-kvm-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-lang-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-seabios-1.11.0_0_g63451fc-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-sgabios-8-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-tools-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-vgabios-1.11.0_0_g63451fc-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 qemu-x86-2.11.2-5.32.1 as a component of SUSE OpenStack Cloud Crowbar 9 libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reass in ip_input.c. CVE-2019-15890 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2019-15890.html CVE-2019-15890 https://bugzilla.suse.com/1149811 SUSE Bug 1149811 https://bugzilla.suse.com/1149813 SUSE Bug 1149813 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the icmp6_send_echoreply() routine while replying to an ICMP echo request, also known as ping. This flaw allows a malicious guest to leak the contents of the host memory, resulting in possible information disclosure. This flaw affects versions of libslirp before 4.3.1. CVE-2020-10756 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2020-10756.html CVE-2020-10756 https://bugzilla.suse.com/1172380 SUSE Bug 1172380 https://bugzilla.suse.com/1184743 SUSE Bug 1184743 hw/pci/msix.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access via a crafted address in an msi-x mmio operation. CVE-2020-13754 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 moderate 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2020-13754.html CVE-2020-13754 https://bugzilla.suse.com/1172382 SUSE Bug 1172382 An out-of-bounds read/write access flaw was found in the USB emulator of the QEMU in versions before 5.2.0. This issue occurs while processing USB packets from a guest when USBDevice 'setup_len' exceeds its 'data_buf[4096]' in the do_token_in, do_token_out routines. This flaw allows a guest user to crash the QEMU process, resulting in a denial of service, or the potential execution of arbitrary code with the privileges of the QEMU process on the host. CVE-2020-14364 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2020-14364.html CVE-2020-14364 https://bugzilla.suse.com/1175441 SUSE Bug 1175441 https://bugzilla.suse.com/1175534 SUSE Bug 1175534 https://bugzilla.suse.com/1176494 SUSE Bug 1176494 https://bugzilla.suse.com/1177130 SUSE Bug 1177130 DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate is a duplicate of CVE-2020-2891 CVE-2020-25707 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2020-25707.html CVE-2020-25707 https://bugzilla.suse.com/1178683 SUSE Bug 1178683 https://bugzilla.suse.com/1179468 SUSE Bug 1179468 A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on the host, resulting in a denial of service. CVE-2020-25723 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 low 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2020-25723.html CVE-2020-25723 https://bugzilla.suse.com/1178934 SUSE Bug 1178934 https://bugzilla.suse.com/1178935 SUSE Bug 1178935 ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length. CVE-2020-29129 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 moderate 4 AV:N/AC:L/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2020-29129.html CVE-2020-29129 https://bugzilla.suse.com/1179466 SUSE Bug 1179466 https://bugzilla.suse.com/1179467 SUSE Bug 1179467 https://bugzilla.suse.com/1179477 SUSE Bug 1179477 https://bugzilla.suse.com/1179484 SUSE Bug 1179484 slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length. CVE-2020-29130 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 moderate 4 AV:N/AC:L/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2020-29130.html CVE-2020-29130 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1179467 SUSE Bug 1179467 https://bugzilla.suse.com/1179477 SUSE Bug 1179477 In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf return values, leading to a buffer overflow in later code. CVE-2020-8608 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2020-8608.html CVE-2020-8608 https://bugzilla.suse.com/1163018 SUSE Bug 1163018 https://bugzilla.suse.com/1163019 SUSE Bug 1163019 An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability. CVE-2021-20257 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 low 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2021-20257.html CVE-2021-20257 https://bugzilla.suse.com/1182577 SUSE Bug 1182577 https://bugzilla.suse.com/1182846 SUSE Bug 1182846 DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none CVE-2021-3419 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-arm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-s390-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server 12 SP4-LTSS:qemu-x86-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud 9:qemu-x86-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-curl-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-iscsi-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-rbd-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-block-ssh-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-guest-agent-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-ipxe-1.0.0+-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-kvm-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-lang-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-seabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-sgabios-8-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-tools-2.11.2-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-vgabios-1.11.0_0_g63451fc-5.32.1 SUSE OpenStack Cloud Crowbar 9:qemu-x86-2.11.2-5.32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211947-1/ https://www.suse.com/security/cve/CVE-2021-3419.html CVE-2021-3419 https://bugzilla.suse.com/1182968 SUSE Bug 1182968 https://bugzilla.suse.com/1182975 SUSE Bug 1182975