qemu-6.1.0-32.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11287 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z qemu-6.1.0-32.1 on GA media These are all security issues fixed in the qemu-6.1.0-32.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11287 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11287 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2014-0222/ SUSE CVE CVE-2014-0222 page https://www.suse.com/security/cve/CVE-2014-8106/ SUSE CVE CVE-2014-8106 page https://www.suse.com/security/cve/CVE-2015-5225/ SUSE CVE CVE-2015-5225 page https://www.suse.com/security/cve/CVE-2015-6855/ SUSE CVE CVE-2015-6855 page https://www.suse.com/security/cve/CVE-2015-8504/ SUSE CVE CVE-2015-8504 page https://www.suse.com/security/cve/CVE-2015-8619/ SUSE CVE CVE-2015-8619 page https://www.suse.com/security/cve/CVE-2016-10028/ SUSE CVE CVE-2016-10028 page https://www.suse.com/security/cve/CVE-2016-10155/ SUSE CVE CVE-2016-10155 page https://www.suse.com/security/cve/CVE-2016-1714/ SUSE CVE CVE-2016-1714 page https://www.suse.com/security/cve/CVE-2016-6490/ SUSE CVE CVE-2016-6490 page https://www.suse.com/security/cve/CVE-2016-6836/ SUSE CVE CVE-2016-6836 page https://www.suse.com/security/cve/CVE-2016-7156/ SUSE CVE CVE-2016-7156 page https://www.suse.com/security/cve/CVE-2016-7157/ SUSE CVE CVE-2016-7157 page https://www.suse.com/security/cve/CVE-2016-7161/ SUSE CVE CVE-2016-7161 page https://www.suse.com/security/cve/CVE-2016-7170/ SUSE CVE CVE-2016-7170 page https://www.suse.com/security/cve/CVE-2016-7421/ SUSE CVE CVE-2016-7421 page https://www.suse.com/security/cve/CVE-2016-7422/ SUSE CVE CVE-2016-7422 page https://www.suse.com/security/cve/CVE-2016-7423/ SUSE CVE CVE-2016-7423 page https://www.suse.com/security/cve/CVE-2016-7466/ SUSE CVE CVE-2016-7466 page https://www.suse.com/security/cve/CVE-2016-7907/ SUSE CVE CVE-2016-7907 page https://www.suse.com/security/cve/CVE-2016-7908/ SUSE CVE CVE-2016-7908 page https://www.suse.com/security/cve/CVE-2016-7909/ SUSE CVE CVE-2016-7909 page https://www.suse.com/security/cve/CVE-2016-7994/ SUSE CVE CVE-2016-7994 page https://www.suse.com/security/cve/CVE-2016-7995/ SUSE CVE CVE-2016-7995 page https://www.suse.com/security/cve/CVE-2016-8576/ SUSE CVE CVE-2016-8576 page https://www.suse.com/security/cve/CVE-2016-8577/ SUSE CVE CVE-2016-8577 page https://www.suse.com/security/cve/CVE-2016-8578/ SUSE CVE CVE-2016-8578 page https://www.suse.com/security/cve/CVE-2016-8667/ SUSE CVE CVE-2016-8667 page https://www.suse.com/security/cve/CVE-2016-8668/ SUSE CVE CVE-2016-8668 page https://www.suse.com/security/cve/CVE-2016-8669/ SUSE CVE CVE-2016-8669 page https://www.suse.com/security/cve/CVE-2016-8909/ SUSE CVE CVE-2016-8909 page https://www.suse.com/security/cve/CVE-2016-8910/ SUSE CVE CVE-2016-8910 page https://www.suse.com/security/cve/CVE-2016-9101/ SUSE CVE CVE-2016-9101 page https://www.suse.com/security/cve/CVE-2016-9102/ SUSE CVE CVE-2016-9102 page https://www.suse.com/security/cve/CVE-2016-9103/ SUSE CVE CVE-2016-9103 page https://www.suse.com/security/cve/CVE-2016-9104/ SUSE CVE CVE-2016-9104 page https://www.suse.com/security/cve/CVE-2016-9105/ SUSE CVE CVE-2016-9105 page https://www.suse.com/security/cve/CVE-2016-9106/ SUSE CVE CVE-2016-9106 page https://www.suse.com/security/cve/CVE-2016-9602/ SUSE CVE CVE-2016-9602 page https://www.suse.com/security/cve/CVE-2016-9907/ SUSE CVE CVE-2016-9907 page https://www.suse.com/security/cve/CVE-2016-9921/ SUSE CVE CVE-2016-9921 page https://www.suse.com/security/cve/CVE-2017-10664/ SUSE CVE CVE-2017-10664 page https://www.suse.com/security/cve/CVE-2017-10806/ SUSE CVE CVE-2017-10806 page https://www.suse.com/security/cve/CVE-2017-11334/ SUSE CVE CVE-2017-11334 page https://www.suse.com/security/cve/CVE-2017-11434/ SUSE CVE CVE-2017-11434 page https://www.suse.com/security/cve/CVE-2017-13673/ SUSE CVE CVE-2017-13673 page https://www.suse.com/security/cve/CVE-2017-13711/ SUSE CVE CVE-2017-13711 page https://www.suse.com/security/cve/CVE-2017-14167/ SUSE CVE CVE-2017-14167 page https://www.suse.com/security/cve/CVE-2017-15038/ SUSE CVE CVE-2017-15038 page https://www.suse.com/security/cve/CVE-2017-15118/ SUSE CVE CVE-2017-15118 page https://www.suse.com/security/cve/CVE-2017-15268/ SUSE CVE CVE-2017-15268 page https://www.suse.com/security/cve/CVE-2017-15289/ SUSE CVE CVE-2017-15289 page https://www.suse.com/security/cve/CVE-2017-2615/ SUSE CVE CVE-2017-2615 page https://www.suse.com/security/cve/CVE-2017-2620/ SUSE CVE CVE-2017-2620 page https://www.suse.com/security/cve/CVE-2017-2630/ SUSE CVE CVE-2017-2630 page https://www.suse.com/security/cve/CVE-2017-5525/ SUSE CVE CVE-2017-5525 page https://www.suse.com/security/cve/CVE-2017-5526/ SUSE CVE CVE-2017-5526 page https://www.suse.com/security/cve/CVE-2017-5552/ SUSE CVE CVE-2017-5552 page https://www.suse.com/security/cve/CVE-2017-5578/ SUSE CVE CVE-2017-5578 page https://www.suse.com/security/cve/CVE-2017-5579/ SUSE CVE CVE-2017-5579 page https://www.suse.com/security/cve/CVE-2017-5667/ SUSE CVE CVE-2017-5667 page https://www.suse.com/security/cve/CVE-2017-5715/ SUSE CVE CVE-2017-5715 page https://www.suse.com/security/cve/CVE-2017-5856/ SUSE CVE CVE-2017-5856 page https://www.suse.com/security/cve/CVE-2017-5857/ SUSE CVE CVE-2017-5857 page https://www.suse.com/security/cve/CVE-2017-5898/ SUSE CVE CVE-2017-5898 page https://www.suse.com/security/cve/CVE-2017-5973/ SUSE CVE CVE-2017-5973 page https://www.suse.com/security/cve/CVE-2017-6058/ SUSE CVE CVE-2017-6058 page https://www.suse.com/security/cve/CVE-2017-7471/ SUSE CVE CVE-2017-7471 page https://www.suse.com/security/cve/CVE-2017-7493/ SUSE CVE CVE-2017-7493 page https://www.suse.com/security/cve/CVE-2017-8112/ SUSE CVE CVE-2017-8112 page https://www.suse.com/security/cve/CVE-2017-8309/ SUSE CVE CVE-2017-8309 page https://www.suse.com/security/cve/CVE-2017-8379/ SUSE CVE CVE-2017-8379 page https://www.suse.com/security/cve/CVE-2017-8380/ SUSE CVE CVE-2017-8380 page https://www.suse.com/security/cve/CVE-2017-9503/ SUSE CVE CVE-2017-9503 page https://www.suse.com/security/cve/CVE-2017-9524/ SUSE CVE CVE-2017-9524 page https://www.suse.com/security/cve/CVE-2018-10839/ SUSE CVE CVE-2018-10839 page https://www.suse.com/security/cve/CVE-2018-11806/ SUSE CVE CVE-2018-11806 page https://www.suse.com/security/cve/CVE-2018-12126/ SUSE CVE CVE-2018-12126 page https://www.suse.com/security/cve/CVE-2018-12130/ SUSE CVE CVE-2018-12130 page https://www.suse.com/security/cve/CVE-2018-12207/ SUSE CVE CVE-2018-12207 page https://www.suse.com/security/cve/CVE-2018-15746/ SUSE CVE CVE-2018-15746 page https://www.suse.com/security/cve/CVE-2018-16872/ SUSE CVE CVE-2018-16872 page https://www.suse.com/security/cve/CVE-2018-17963/ SUSE CVE CVE-2018-17963 page https://www.suse.com/security/cve/CVE-2018-20123/ SUSE CVE CVE-2018-20123 page https://www.suse.com/security/cve/CVE-2018-20124/ SUSE CVE CVE-2018-20124 page https://www.suse.com/security/cve/CVE-2018-20125/ SUSE CVE CVE-2018-20125 page https://www.suse.com/security/cve/CVE-2018-20126/ SUSE CVE CVE-2018-20126 page https://www.suse.com/security/cve/CVE-2018-20191/ SUSE CVE CVE-2018-20191 page https://www.suse.com/security/cve/CVE-2018-20216/ SUSE CVE CVE-2018-20216 page https://www.suse.com/security/cve/CVE-2018-20815/ SUSE CVE CVE-2018-20815 page https://www.suse.com/security/cve/CVE-2018-3639/ SUSE CVE CVE-2018-3639 page https://www.suse.com/security/cve/CVE-2018-7858/ SUSE CVE CVE-2018-7858 page https://www.suse.com/security/cve/CVE-2019-03812/ SUSE CVE CVE-2019-03812 page https://www.suse.com/security/cve/CVE-2019-11135/ SUSE CVE CVE-2019-11135 page https://www.suse.com/security/cve/CVE-2019-12155/ SUSE CVE CVE-2019-12155 page https://www.suse.com/security/cve/CVE-2019-13164/ SUSE CVE CVE-2019-13164 page https://www.suse.com/security/cve/CVE-2019-14378/ SUSE CVE CVE-2019-14378 page https://www.suse.com/security/cve/CVE-2019-15890/ SUSE CVE CVE-2019-15890 page https://www.suse.com/security/cve/CVE-2019-6778/ SUSE CVE CVE-2019-6778 page https://www.suse.com/security/cve/CVE-2019-8934/ SUSE CVE CVE-2019-8934 page https://www.suse.com/security/cve/CVE-2019-9824/ SUSE CVE CVE-2019-9824 page https://www.suse.com/security/cve/CVE-2020-10702/ SUSE CVE CVE-2020-10702 page https://www.suse.com/security/cve/CVE-2020-10717/ SUSE CVE CVE-2020-10717 page https://www.suse.com/security/cve/CVE-2020-10761/ SUSE CVE CVE-2020-10761 page https://www.suse.com/security/cve/CVE-2020-11102/ SUSE CVE CVE-2020-11102 page https://www.suse.com/security/cve/CVE-2020-11869/ SUSE CVE CVE-2020-11869 page https://www.suse.com/security/cve/CVE-2020-13361/ SUSE CVE CVE-2020-13361 page https://www.suse.com/security/cve/CVE-2020-13362/ SUSE CVE CVE-2020-13362 page https://www.suse.com/security/cve/CVE-2020-13659/ SUSE CVE CVE-2020-13659 page https://www.suse.com/security/cve/CVE-2020-13800/ SUSE CVE CVE-2020-13800 page https://www.suse.com/security/cve/CVE-2020-14364/ SUSE CVE CVE-2020-14364 page https://www.suse.com/security/cve/CVE-2020-16092/ SUSE CVE CVE-2020-16092 page https://www.suse.com/security/cve/CVE-2020-1711/ SUSE CVE CVE-2020-1711 page https://www.suse.com/security/cve/CVE-2020-17380/ SUSE CVE CVE-2020-17380 page https://www.suse.com/security/cve/CVE-2020-1983/ SUSE CVE CVE-2020-1983 page https://www.suse.com/security/cve/CVE-2020-25085/ SUSE CVE CVE-2020-25085 page https://www.suse.com/security/cve/CVE-2020-25723/ SUSE CVE CVE-2020-25723 page https://www.suse.com/security/cve/CVE-2020-27821/ SUSE CVE CVE-2020-27821 page https://www.suse.com/security/cve/CVE-2020-29129/ SUSE CVE CVE-2020-29129 page https://www.suse.com/security/cve/CVE-2020-7039/ SUSE CVE CVE-2020-7039 page https://www.suse.com/security/cve/CVE-2020-8608/ SUSE CVE CVE-2020-8608 page https://www.suse.com/security/cve/CVE-2021-20181/ SUSE CVE CVE-2021-20181 page https://www.suse.com/security/cve/CVE-2021-20203/ SUSE CVE CVE-2021-20203 page https://www.suse.com/security/cve/CVE-2021-20221/ SUSE CVE CVE-2021-20221 page https://www.suse.com/security/cve/CVE-2021-20257/ SUSE CVE CVE-2021-20257 page https://www.suse.com/security/cve/CVE-2021-20263/ SUSE CVE CVE-2021-20263 page https://www.suse.com/security/cve/CVE-2021-3416/ SUSE CVE CVE-2021-3416 page https://www.suse.com/security/cve/CVE-2021-3527/ SUSE CVE CVE-2021-3527 page https://www.suse.com/security/cve/CVE-2021-3544/ SUSE CVE CVE-2021-3544 page https://www.suse.com/security/cve/CVE-2021-3545/ SUSE CVE CVE-2021-3545 page https://www.suse.com/security/cve/CVE-2021-3546/ SUSE CVE CVE-2021-3546 page https://www.suse.com/security/cve/CVE-2021-3582/ SUSE CVE CVE-2021-3582 page https://www.suse.com/security/cve/CVE-2021-3607/ SUSE CVE CVE-2021-3607 page https://www.suse.com/security/cve/CVE-2021-3608/ SUSE CVE CVE-2021-3608 page https://www.suse.com/security/cve/CVE-2021-3682/ SUSE CVE CVE-2021-3682 page openSUSE Tumbleweed qemu-6.1.0-32.1 qemu-accel-qtest-6.1.0-32.1 qemu-accel-tcg-x86-6.1.0-32.1 qemu-arm-6.1.0-32.1 qemu-audio-alsa-6.1.0-32.1 qemu-audio-jack-6.1.0-32.1 qemu-audio-pa-6.1.0-32.1 qemu-audio-spice-6.1.0-32.1 qemu-block-curl-6.1.0-32.1 qemu-block-dmg-6.1.0-32.1 qemu-block-gluster-6.1.0-32.1 qemu-block-iscsi-6.1.0-32.1 qemu-block-nfs-6.1.0-32.1 qemu-block-rbd-6.1.0-32.1 qemu-block-ssh-6.1.0-32.1 qemu-chardev-baum-6.1.0-32.1 qemu-chardev-spice-6.1.0-32.1 qemu-extra-6.1.0-32.1 qemu-guest-agent-6.1.0-32.1 qemu-hw-display-qxl-6.1.0-32.1 qemu-hw-display-virtio-gpu-6.1.0-32.1 qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 qemu-hw-display-virtio-vga-6.1.0-32.1 qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 qemu-hw-usb-host-6.1.0-32.1 qemu-hw-usb-redirect-6.1.0-32.1 qemu-hw-usb-smartcard-6.1.0-32.1 qemu-ipxe-1.0.0+-32.1 qemu-ivshmem-tools-6.1.0-32.1 qemu-ksm-6.1.0-32.1 qemu-kvm-6.1.0-32.1 qemu-lang-6.1.0-32.1 qemu-microvm-6.1.0-32.1 qemu-ppc-6.1.0-32.1 qemu-s390x-6.1.0-32.1 qemu-seabios-1.14.0_0_g155821a-32.1 qemu-sgabios-8-32.1 qemu-skiboot-6.1.0-32.1 qemu-tools-6.1.0-32.1 qemu-ui-curses-6.1.0-32.1 qemu-ui-gtk-6.1.0-32.1 qemu-ui-opengl-6.1.0-32.1 qemu-ui-spice-app-6.1.0-32.1 qemu-ui-spice-core-6.1.0-32.1 qemu-vgabios-1.14.0_0_g155821a-32.1 qemu-vhost-user-gpu-6.1.0-32.1 qemu-x86-6.1.0-32.1 qemu-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-accel-qtest-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-accel-tcg-x86-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-arm-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-audio-alsa-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-audio-jack-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-audio-pa-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-audio-spice-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-block-curl-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-block-dmg-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-block-gluster-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-block-iscsi-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-block-nfs-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-block-rbd-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-block-ssh-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-chardev-baum-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-chardev-spice-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-extra-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-guest-agent-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-hw-display-qxl-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-hw-display-virtio-gpu-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-hw-display-virtio-vga-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-hw-usb-host-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-hw-usb-redirect-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-hw-usb-smartcard-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-ipxe-1.0.0+-32.1 as a component of openSUSE Tumbleweed qemu-ivshmem-tools-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-ksm-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-kvm-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-lang-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-microvm-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-ppc-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-s390x-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-seabios-1.14.0_0_g155821a-32.1 as a component of openSUSE Tumbleweed qemu-sgabios-8-32.1 as a component of openSUSE Tumbleweed qemu-skiboot-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-tools-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-ui-curses-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-ui-gtk-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-ui-opengl-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-ui-spice-app-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-ui-spice-core-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-vgabios-1.14.0_0_g155821a-32.1 as a component of openSUSE Tumbleweed qemu-vhost-user-gpu-6.1.0-32.1 as a component of openSUSE Tumbleweed qemu-x86-6.1.0-32.1 as a component of openSUSE Tumbleweed Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image. CVE-2014-0222 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 5.5 AV:A/AC:L/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0222.html CVE-2014-0222 https://bugzilla.suse.com/1072223 SUSE Bug 1072223 https://bugzilla.suse.com/877642 SUSE Bug 877642 https://bugzilla.suse.com/950367 SUSE Bug 950367 https://bugzilla.suse.com/964925 SUSE Bug 964925 Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320. CVE-2014-8106 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-8106.html CVE-2014-8106 https://bugzilla.suse.com/1023004 SUSE Bug 1023004 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/907805 SUSE Bug 907805 Buffer overflow in the vnc_refresh_server_surface function in the VNC display driver in QEMU before 2.4.0.1 allows guest users to cause a denial of service (heap memory corruption and process crash) or possibly execute arbitrary code on the host via unspecified vectors, related to refreshing the server display surface. CVE-2015-5225 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 6.5 AV:A/AC:H/Au:S/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5225.html CVE-2015-5225 https://bugzilla.suse.com/942845 SUSE Bug 942845 hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WIN_READ_NATIVE_MAX command to an empty drive, which triggers a divide-by-zero error and instance crash. CVE-2015-6855 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-6855.html CVE-2015-6855 https://bugzilla.suse.com/945404 SUSE Bug 945404 https://bugzilla.suse.com/965156 SUSE Bug 965156 Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client. CVE-2015-8504 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8504.html CVE-2015-8504 https://bugzilla.suse.com/958491 SUSE Bug 958491 https://bugzilla.suse.com/958493 SUSE Bug 958493 The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service (out-of-bounds write and application crash). CVE-2015-8619 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8619.html CVE-2015-8619 https://bugzilla.suse.com/960334 SUSE Bug 960334 https://bugzilla.suse.com/965269 SUSE Bug 965269 The virgl_cmd_get_capset function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) built with Virtio GPU Device emulator support allows local guest OS users to cause a denial of service (out-of-bounds read and process crash) via a VIRTIO_GPU_CMD_GET_CAPSET command with a maximum capabilities size with a value of 0. CVE-2016-10028 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-10028.html CVE-2016-10028 https://bugzilla.suse.com/1017084 SUSE Bug 1017084 https://bugzilla.suse.com/1017085 SUSE Bug 1017085 https://bugzilla.suse.com/1185981 SUSE Bug 1185981 Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations. CVE-2016-10155 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-10155.html CVE-2016-10155 https://bugzilla.suse.com/1021129 SUSE Bug 1021129 https://bugzilla.suse.com/1024183 SUSE Bug 1024183 The (1) fw_cfg_write and (2) fw_cfg_read functions in hw/nvram/fw_cfg.c in QEMU before 2.4, when built with the Firmware Configuration device emulation support, allow guest OS users with the CAP_SYS_RAWIO privilege to cause a denial of service (out-of-bounds read or write access and process crash) or possibly execute arbitrary code via an invalid current entry value in a firmware configuration. CVE-2016-1714 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.9 AV:A/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-1714.html CVE-2016-1714 https://bugzilla.suse.com/961691 SUSE Bug 961691 https://bugzilla.suse.com/961692 SUSE Bug 961692 The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via a zero length for the descriptor buffer. CVE-2016-6490 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6490.html CVE-2016-6490 https://bugzilla.suse.com/991466 SUSE Bug 991466 https://bugzilla.suse.com/993854 SUSE Bug 993854 The vmxnet3_complete_packet function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows local guest OS administrators to obtain sensitive host memory information by leveraging failure to initialize the txcq_descr object. CVE-2016-6836 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6836.html CVE-2016-6836 https://bugzilla.suse.com/994760 SUSE Bug 994760 https://bugzilla.suse.com/994761 SUSE Bug 994761 The pvscsi_convert_sglist function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) by leveraging an incorrect cast. CVE-2016-7156 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7156.html CVE-2016-7156 https://bugzilla.suse.com/997859 SUSE Bug 997859 The (1) mptsas_config_manufacturing_1 and (2) mptsas_config_ioc_0 functions in hw/scsi/mptconfig.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU process crash) via vectors involving MPTSAS_CONFIG_PACK. CVE-2016-7157 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7157.html CVE-2016-7157 https://bugzilla.suse.com/997860 SUSE Bug 997860 Heap-based buffer overflow in the .receive callback of xlnx.xps-ethernetlite in QEMU (aka Quick Emulator) allows attackers to execute arbitrary code on the QEMU host via a large ethlite packet. CVE-2016-7161 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7161.html CVE-2016-7161 https://bugzilla.suse.com/1001151 SUSE Bug 1001151 https://bugzilla.suse.com/1001152 SUSE Bug 1001152 The vmsvga_fifo_run function in hw/display/vmware_vga.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to cursor.mask[] and cursor.image[] array sizes when processing a DEFINE_CURSOR svga command. CVE-2016-7170 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7170.html CVE-2016-7170 https://bugzilla.suse.com/998516 SUSE Bug 998516 The pvscsi_ring_pop_req_descr function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) by leveraging failure to limit process IO loop to the ring size. CVE-2016-7421 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7421.html CVE-2016-7421 https://bugzilla.suse.com/999661 SUSE Bug 999661 The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process crash) via a large I/O descriptor buffer length value. CVE-2016-7422 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7422.html CVE-2016-7422 https://bugzilla.suse.com/1000346 SUSE Bug 1000346 The mptsas_process_scsi_io_request function in QEMU (aka Quick Emulator), when built with LSI SAS1068 Host Bus emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors involving MPTSASRequest objects. CVE-2016-7423 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7423.html CVE-2016-7423 https://bugzilla.suse.com/1000397 SUSE Bug 1000397 Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consumption and possibly QEMU process crash) by repeatedly unplugging a USB device. CVE-2016-7466 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7466.html CVE-2016-7466 https://bugzilla.suse.com/1000345 SUSE Bug 1000345 The imx_fec_do_tx function in hw/net/imx_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted values in bd.flags. CVE-2016-7907 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7907.html CVE-2016-7907 https://bugzilla.suse.com/1002549 SUSE Bug 1002549 The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via vectors involving a buffer descriptor with a length of 0 and crafted values in bd.flags. CVE-2016-7908 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7908.html CVE-2016-7908 https://bugzilla.suse.com/1002550 SUSE Bug 1002550 https://bugzilla.suse.com/1003030 SUSE Bug 1003030 The pcnet_rdra_addr function in hw/net/pcnet.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) by setting the (1) receive or (2) transmit descriptor ring length to 0. CVE-2016-7909 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7909.html CVE-2016-7909 https://bugzilla.suse.com/1002557 SUSE Bug 1002557 https://bugzilla.suse.com/1003032 SUSE Bug 1003032 Memory leak in the virtio_gpu_resource_create_2d function in hw/display/virtio-gpu.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via a large number of VIRTIO_GPU_CMD_RESOURCE_CREATE_2D commands. CVE-2016-7994 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7994.html CVE-2016-7994 https://bugzilla.suse.com/1003613 SUSE Bug 1003613 Memory leak in the ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via a large number of crafted buffer page select (PG) indexes. CVE-2016-7995 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7995.html CVE-2016-7995 https://bugzilla.suse.com/1003612 SUSE Bug 1003612 https://bugzilla.suse.com/1003870 SUSE Bug 1003870 The xhci_ring_fetch function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) by leveraging failure to limit the number of link Transfer Request Blocks (TRB) to process. CVE-2016-8576 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8576.html CVE-2016-8576 https://bugzilla.suse.com/1003878 SUSE Bug 1003878 https://bugzilla.suse.com/1004016 SUSE Bug 1004016 Memory leak in the v9fs_read function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via vectors related to an I/O read operation. CVE-2016-8577 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8577.html CVE-2016-8577 https://bugzilla.suse.com/1003893 SUSE Bug 1003893 https://bugzilla.suse.com/1004021 SUSE Bug 1004021 The v9fs_iov_vunmarshal function in fsdev/9p-iov-marshal.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process crash) by sending an empty string parameter to a 9P operation. CVE-2016-8578 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8578.html CVE-2016-8578 https://bugzilla.suse.com/1003894 SUSE Bug 1003894 https://bugzilla.suse.com/1004023 SUSE Bug 1004023 The rc4030_write function in hw/dma/rc4030.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via a large interval timer reload value. CVE-2016-8667 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8667.html CVE-2016-8667 https://bugzilla.suse.com/1004702 SUSE Bug 1004702 https://bugzilla.suse.com/1005004 SUSE Bug 1005004 The rocker_io_writel function in hw/net/rocker/rocker.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds read and QEMU process crash) by leveraging failure to limit DMA buffer size. CVE-2016-8668 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8668.html CVE-2016-8668 https://bugzilla.suse.com/1004706 SUSE Bug 1004706 The serial_update_parameters function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving a value of divider greater than baud base. CVE-2016-8669 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8669.html CVE-2016-8669 https://bugzilla.suse.com/1004707 SUSE Bug 1004707 https://bugzilla.suse.com/1005005 SUSE Bug 1005005 The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via an entry with the same value for buffer length and pointer position. CVE-2016-8909 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.1 AV:N/AC:H/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8909.html CVE-2016-8909 https://bugzilla.suse.com/1006536 SUSE Bug 1006536 https://bugzilla.suse.com/1007160 SUSE Bug 1007160 The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) by leveraging failure to limit the ring descriptor count. CVE-2016-8910 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8910.html CVE-2016-8910 https://bugzilla.suse.com/1006538 SUSE Bug 1006538 https://bugzilla.suse.com/1007157 SUSE Bug 1007157 https://bugzilla.suse.com/1024178 SUSE Bug 1024178 Memory leak in hw/net/eepro100.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by repeatedly unplugging an i8255x (PRO100) NIC device. CVE-2016-9101 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9101.html CVE-2016-9101 https://bugzilla.suse.com/1007391 SUSE Bug 1007391 https://bugzilla.suse.com/1013668 SUSE Bug 1013668 https://bugzilla.suse.com/1024181 SUSE Bug 1024181 Memory leak in the v9fs_xattrcreate function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) via a large number of Txattrcreate messages with the same fid number. CVE-2016-9102 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9102.html CVE-2016-9102 https://bugzilla.suse.com/1007450 SUSE Bug 1007450 https://bugzilla.suse.com/1014256 SUSE Bug 1014256 The v9fs_xattrcreate function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to obtain sensitive host heap memory information by reading xattribute values before writing to them. CVE-2016-9103 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9103.html CVE-2016-9103 https://bugzilla.suse.com/1007454 SUSE Bug 1007454 https://bugzilla.suse.com/1014259 SUSE Bug 1014259 Multiple integer overflows in the (1) v9fs_xattr_read and (2) v9fs_xattr_write functions in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU process crash) via a crafted offset, which triggers an out-of-bounds access. CVE-2016-9104 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 3 AV:L/AC:M/Au:S/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9104.html CVE-2016-9104 https://bugzilla.suse.com/1007493 SUSE Bug 1007493 https://bugzilla.suse.com/1014297 SUSE Bug 1014297 https://bugzilla.suse.com/1034990 SUSE Bug 1034990 Memory leak in the v9fs_link function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via vectors involving a reference to the source fid object. CVE-2016-9105 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9105.html CVE-2016-9105 https://bugzilla.suse.com/1007494 SUSE Bug 1007494 https://bugzilla.suse.com/1014279 SUSE Bug 1014279 Memory leak in the v9fs_write function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) by leveraging failure to free an IO vector. CVE-2016-9106 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9106.html CVE-2016-9106 https://bugzilla.suse.com/1007495 SUSE Bug 1007495 https://bugzilla.suse.com/1014299 SUSE Bug 1014299 Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host. CVE-2016-9602 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 3.7 AV:L/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9602.html CVE-2016-9602 https://bugzilla.suse.com/1020427 SUSE Bug 1020427 Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw. It could occur while destroying the USB redirector in 'usbredir_handle_destroy'. A guest user/process could use this issue to leak host memory, resulting in DoS for a host. CVE-2016-9907 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9907.html CVE-2016-9907 https://bugzilla.suse.com/1014109 SUSE Bug 1014109 https://bugzilla.suse.com/1014490 SUSE Bug 1014490 Quick emulator (Qemu) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to a divide by zero issue. It could occur while copying VGA data when cirrus graphics mode was set to be VGA. A privileged user inside guest could use this flaw to crash the Qemu process instance on the host, resulting in DoS. CVE-2016-9921 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9921.html CVE-2016-9921 https://bugzilla.suse.com/1014702 SUSE Bug 1014702 https://bugzilla.suse.com/1015169 SUSE Bug 1015169 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 qemu-nbd in QEMU (aka Quick Emulator) does not ignore SIGPIPE, which allows remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt. CVE-2017-10664 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-10664.html CVE-2017-10664 https://bugzilla.suse.com/1046636 SUSE Bug 1046636 https://bugzilla.suse.com/1046637 SUSE Bug 1046637 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 Stack-based buffer overflow in hw/usb/redirect.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (QEMU process crash) via vectors related to logging debug messages. CVE-2017-10806 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4 AV:L/AC:H/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-10806.html CVE-2017-10806 https://bugzilla.suse.com/1047674 SUSE Bug 1047674 https://bugzilla.suse.com/1047675 SUSE Bug 1047675 The address_space_write_continue function in exec.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds access and guest instance crash) by leveraging use of qemu_map_ram_ptr to access guest ram block area. CVE-2017-11334 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-11334.html CVE-2017-11334 https://bugzilla.suse.com/1048902 SUSE Bug 1048902 https://bugzilla.suse.com/1048920 SUSE Bug 1048920 The dhcp_decode function in slirp/bootp.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) via a crafted DHCP options string. CVE-2017-11434 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-11434.html CVE-2017-11434 https://bugzilla.suse.com/1049381 SUSE Bug 1049381 https://bugzilla.suse.com/1049578 SUSE Bug 1049578 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 The vga display update in mis-calculated the region for the dirty bitmap snapshot in case split screen mode is used causing a denial of service (assertion failure) in the cpu_physical_memory_snapshot_get_dirty function. CVE-2017-13673 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-13673.html CVE-2017-13673 https://bugzilla.suse.com/1056386 SUSE Bug 1056386 https://bugzilla.suse.com/1056387 SUSE Bug 1056387 https://bugzilla.suse.com/1084604 SUSE Bug 1084604 Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU (aka Quick Emulator) allows attackers to cause a denial of service (QEMU instance crash) by leveraging failure to properly clear ifq_so from pending packets. CVE-2017-13711 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-13711.html CVE-2017-13711 https://bugzilla.suse.com/1056291 SUSE Bug 1056291 Integer overflow in the load_multiboot function in hw/i386/multiboot.c in QEMU (aka Quick Emulator) allows local guest OS users to execute arbitrary code on the host via crafted multiboot header address values, which trigger an out-of-bounds write. CVE-2017-14167 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.6 AV:L/AC:H/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-14167.html CVE-2017-14167 https://bugzilla.suse.com/1057585 SUSE Bug 1057585 Race condition in the v9fs_xattrwalk function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS users to obtain sensitive information from host heap memory via vectors related to reading extended attributes. CVE-2017-15038 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-15038.html CVE-2017-15038 https://bugzilla.suse.com/1062069 SUSE Bug 1062069 A stack-based buffer overflow vulnerability was found in NBD server implementation in qemu before 2.11 allowing a client to request an export name of size up to 4096 bytes, which in fact should be limited to 256 bytes, causing an out-of-bounds stack write in the qemu process. If NBD server requires TLS, the attacker cannot trigger the buffer overflow without first successfully negotiating TLS. CVE-2017-15118 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-15118.html CVE-2017-15118 https://bugzilla.suse.com/1070147 SUSE Bug 1070147 Qemu through 2.10.0 allows remote attackers to cause a memory leak by triggering slow data-channel read operations, related to io/channel-websock.c. CVE-2017-15268 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-15268.html CVE-2017-15268 https://bugzilla.suse.com/1062942 SUSE Bug 1062942 The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow local OS guest privileged users to cause a denial of service (out-of-bounds write access and Qemu process crash) via vectors related to dst calculation. CVE-2017-15289 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-15289.html CVE-2017-15289 https://bugzilla.suse.com/1063122 SUSE Bug 1063122 https://bugzilla.suse.com/1063123 SUSE Bug 1063123 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process resulting in DoS or potentially execute arbitrary code on the host with privileges of QEMU process on the host. CVE-2017-2615 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.9 AV:A/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-2615.html CVE-2017-2615 https://bugzilla.suse.com/1023004 SUSE Bug 1023004 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user inside guest could use this flaw to crash the QEMU process OR potentially execute arbitrary code on host with privileges of the QEMU process. CVE-2017-2620 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.9 AV:A/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-2620.html CVE-2017-2620 https://bugzilla.suse.com/1024834 SUSE Bug 1024834 https://bugzilla.suse.com/1024972 SUSE Bug 1024972 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 A stack buffer overflow flaw was found in the Quick Emulator (QEMU) before 2.9 built with the Network Block Device (NBD) client support. The flaw could occur while processing server's response to a 'NBD_OPT_LIST' request. A malicious NBD server could use this issue to crash a remote NBD client resulting in DoS or potentially execute arbitrary code on client host with privileges of the QEMU process. CVE-2017-2630 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-2630.html CVE-2017-2630 https://bugzilla.suse.com/1025396 SUSE Bug 1025396 Memory leak in hw/audio/ac97.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations. CVE-2017-5525 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5525.html CVE-2017-5525 https://bugzilla.suse.com/1020491 SUSE Bug 1020491 Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations. CVE-2017-5526 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5526.html CVE-2017-5526 https://bugzilla.suse.com/1020589 SUSE Bug 1020589 https://bugzilla.suse.com/1059777 SUSE Bug 1059777 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 Memory leak in the virgl_resource_attach_backing function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (host memory consumption) via a large number of VIRTIO_GPU_CMD_RESOURCE_ATTACH_BACKING commands. CVE-2017-5552 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5552.html CVE-2017-5552 https://bugzilla.suse.com/1021195 SUSE Bug 1021195 Memory leak in the virtio_gpu_resource_attach_backing function in hw/display/virtio-gpu.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (host memory consumption) via a large number of VIRTIO_GPU_CMD_RESOURCE_ATTACH_BACKING commands. CVE-2017-5578 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5578.html CVE-2017-5578 https://bugzilla.suse.com/1021481 SUSE Bug 1021481 Memory leak in the serial_exit_core function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations. CVE-2017-5579 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5579.html CVE-2017-5579 https://bugzilla.suse.com/1021741 SUSE Bug 1021741 https://bugzilla.suse.com/1022627 SUSE Bug 1022627 The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds heap access and crash) or execute arbitrary code on the QEMU host via vectors involving the data transfer length. CVE-2017-5667 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 4.9 AV:A/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5667.html CVE-2017-5667 https://bugzilla.suse.com/1022541 SUSE Bug 1022541 Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. CVE-2017-5715 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 important 4.7 AV:L/AC:M/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5715.html CVE-2017-5715 https://bugzilla.suse.com/1068032 SUSE Bug 1068032 https://bugzilla.suse.com/1074562 SUSE Bug 1074562 https://bugzilla.suse.com/1074578 SUSE Bug 1074578 https://bugzilla.suse.com/1074701 SUSE Bug 1074701 https://bugzilla.suse.com/1074741 SUSE Bug 1074741 https://bugzilla.suse.com/1074919 SUSE Bug 1074919 https://bugzilla.suse.com/1075006 SUSE Bug 1075006 https://bugzilla.suse.com/1075007 SUSE Bug 1075007 https://bugzilla.suse.com/1075262 SUSE Bug 1075262 https://bugzilla.suse.com/1075419 SUSE Bug 1075419 https://bugzilla.suse.com/1076115 SUSE Bug 1076115 https://bugzilla.suse.com/1076372 SUSE Bug 1076372 https://bugzilla.suse.com/1076606 SUSE Bug 1076606 https://bugzilla.suse.com/1078353 SUSE Bug 1078353 https://bugzilla.suse.com/1080039 SUSE Bug 1080039 https://bugzilla.suse.com/1087887 SUSE Bug 1087887 https://bugzilla.suse.com/1087939 SUSE Bug 1087939 https://bugzilla.suse.com/1088147 SUSE Bug 1088147 https://bugzilla.suse.com/1089055 SUSE Bug 1089055 https://bugzilla.suse.com/1091815 SUSE Bug 1091815 https://bugzilla.suse.com/1095735 SUSE Bug 1095735 https://bugzilla.suse.com/1102517 SUSE Bug 1102517 https://bugzilla.suse.com/1105108 SUSE Bug 1105108 https://bugzilla.suse.com/1126516 SUSE Bug 1126516 https://bugzilla.suse.com/1173489 SUSE Bug 1173489 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201457 SUSE Bug 1201457 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 https://bugzilla.suse.com/1203236 SUSE Bug 1203236 Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over 2 Gb. CVE-2017-5856 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5856.html CVE-2017-5856 https://bugzilla.suse.com/1023053 SUSE Bug 1023053 https://bugzilla.suse.com/1024186 SUSE Bug 1024186 Memory leak in the virgl_cmd_resource_unref function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (host memory consumption) via a large number of VIRTIO_GPU_CMD_RESOURCE_UNREF commands sent without detaching the backing storage beforehand. CVE-2017-5857 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5857.html CVE-2017-5857 https://bugzilla.suse.com/1023073 SUSE Bug 1023073 Integer overflow in the emulated_apdu_from_guest function in usb/dev-smartcard-reader.c in Quick Emulator (Qemu), when built with the CCID Card device emulator support, allows local users to cause a denial of service (application crash) via a large Application Protocol Data Units (APDU) unit. CVE-2017-5898 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 3.8 AV:A/AC:M/Au:S/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5898.html CVE-2017-5898 https://bugzilla.suse.com/1023907 SUSE Bug 1023907 https://bugzilla.suse.com/1024307 SUSE Bug 1024307 The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and QEMU process crash) via vectors related to control transfer descriptor sequence. CVE-2017-5973 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 2.3 AV:A/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5973.html CVE-2017-5973 https://bugzilla.suse.com/1025109 SUSE Bug 1025109 https://bugzilla.suse.com/1025188 SUSE Bug 1025188 Buffer overflow in NetRxPkt::ehdr_buf in hw/net/net_rx_pkt.c in QEMU (aka Quick Emulator), when the VLANSTRIP feature is enabled on the vmxnet3 device, allows remote attackers to cause a denial of service (out-of-bounds access and QEMU process crash) via vectors related to VLAN stripping. CVE-2017-6058 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6058.html CVE-2017-6058 https://bugzilla.suse.com/1025837 SUSE Bug 1025837 Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System (9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing files on a shared host directory. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host. CVE-2017-7471 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 6 AV:L/AC:H/Au:S/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7471.html CVE-2017-7471 https://bugzilla.suse.com/1034866 SUSE Bug 1034866 https://bugzilla.suse.com/1034990 SUSE Bug 1034990 Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System(9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing virtfs metadata files in mapped-file security mode. A guest user could use this flaw to escalate their privileges inside guest. CVE-2017-7493 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7493.html CVE-2017-7493 https://bugzilla.suse.com/1039495 SUSE Bug 1039495 hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and CPU consumption) via the message ring page count. CVE-2017-8112 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-8112.html CVE-2017-8112 https://bugzilla.suse.com/1036211 SUSE Bug 1036211 https://bugzilla.suse.com/1036470 SUSE Bug 1036470 Memory leak in the audio/audio.c in QEMU (aka Quick Emulator) allows remote attackers to cause a denial of service (memory consumption) by repeatedly starting and stopping audio capture. CVE-2017-8309 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-8309.html CVE-2017-8309 https://bugzilla.suse.com/1037242 SUSE Bug 1037242 https://bugzilla.suse.com/1037243 SUSE Bug 1037243 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 Memory leak in the keyboard input event handlers support in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) by rapidly generating large keyboard events. CVE-2017-8379 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-8379.html CVE-2017-8379 https://bugzilla.suse.com/1037334 SUSE Bug 1037334 Buffer overflow in the "megasas_mmio_write" function in Qemu 2.9.0 allows remote attackers to have unspecified impact via unknown vectors. CVE-2017-8380 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-8380.html CVE-2017-8380 https://bugzilla.suse.com/1037336 SUSE Bug 1037336 QEMU (aka Quick Emulator), when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) via vectors involving megasas command processing. CVE-2017-9503 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9503.html CVE-2017-9503 https://bugzilla.suse.com/1043296 SUSE Bug 1043296 https://bugzilla.suse.com/1043297 SUSE Bug 1043297 https://bugzilla.suse.com/1043312 SUSE Bug 1043312 The qemu-nbd server in QEMU (aka Quick Emulator), when built with the Network Block Device (NBD) Server support, allows remote attackers to cause a denial of service (segmentation fault and server crash) by leveraging failure to ensure that all initialization occurs before talking to a client in the nbd_negotiate function. CVE-2017-9524 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9524.html CVE-2017-9524 https://bugzilla.suse.com/1043808 SUSE Bug 1043808 Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash the Qemu process resulting in DoS. CVE-2018-10839 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-10839.html CVE-2018-10839 https://bugzilla.suse.com/1110910 SUSE Bug 1110910 https://bugzilla.suse.com/1110924 SUSE Bug 1110924 m_cat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams. CVE-2018-11806 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11806.html CVE-2018-11806 https://bugzilla.suse.com/1096223 SUSE Bug 1096223 https://bugzilla.suse.com/1096224 SUSE Bug 1096224 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 Microarchitectural Store Buffer Data Sampling (MSBDS): Store buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf CVE-2018-12126 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-12126.html CVE-2018-12126 https://bugzilla.suse.com/1103186 SUSE Bug 1103186 https://bugzilla.suse.com/1111331 SUSE Bug 1111331 https://bugzilla.suse.com/1132686 SUSE Bug 1132686 https://bugzilla.suse.com/1135409 SUSE Bug 1135409 https://bugzilla.suse.com/1135524 SUSE Bug 1135524 https://bugzilla.suse.com/1137916 SUSE Bug 1137916 https://bugzilla.suse.com/1138534 SUSE Bug 1138534 https://bugzilla.suse.com/1141977 SUSE Bug 1141977 https://bugzilla.suse.com/1149725 SUSE Bug 1149725 https://bugzilla.suse.com/1149726 SUSE Bug 1149726 https://bugzilla.suse.com/1149729 SUSE Bug 1149729 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 Microarchitectural Fill Buffer Data Sampling (MFBDS): Fill buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf CVE-2018-12130 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-12130.html CVE-2018-12130 https://bugzilla.suse.com/1103186 SUSE Bug 1103186 https://bugzilla.suse.com/1111331 SUSE Bug 1111331 https://bugzilla.suse.com/1132686 SUSE Bug 1132686 https://bugzilla.suse.com/1135409 SUSE Bug 1135409 https://bugzilla.suse.com/1137916 SUSE Bug 1137916 https://bugzilla.suse.com/1138534 SUSE Bug 1138534 https://bugzilla.suse.com/1141977 SUSE Bug 1141977 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access. CVE-2018-12207 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-12207.html CVE-2018-12207 https://bugzilla.suse.com/1117665 SUSE Bug 1117665 https://bugzilla.suse.com/1139073 SUSE Bug 1139073 https://bugzilla.suse.com/1152505 SUSE Bug 1152505 https://bugzilla.suse.com/1155812 SUSE Bug 1155812 https://bugzilla.suse.com/1155817 SUSE Bug 1155817 https://bugzilla.suse.com/1155945 SUSE Bug 1155945 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 qemu-seccomp.c in QEMU might allow local OS guest users to cause a denial of service (guest crash) by leveraging mishandling of the seccomp policy for threads other than the main thread. CVE-2018-15746 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-15746.html CVE-2018-15746 https://bugzilla.suse.com/1106222 SUSE Bug 1106222 A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn't consider that the underlying filesystem may have changed since the time lstat(2) was called in usb_mtp_object_alloc, a classical TOCTTOU problem. An attacker with write access to the host filesystem shared with a guest can use this property to navigate the host filesystem in the context of the QEMU process and read any file the QEMU process has access to. Access to the filesystem may be local or via a network share protocol such as CIFS. CVE-2018-16872 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16872.html CVE-2018-16872 https://bugzilla.suse.com/1119493 SUSE Bug 1119493 https://bugzilla.suse.com/1119494 SUSE Bug 1119494 qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact. CVE-2018-17963 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-17963.html CVE-2018-17963 https://bugzilla.suse.com/1111013 SUSE Bug 1111013 https://bugzilla.suse.com/1111014 SUSE Bug 1111014 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 pvrdma_realize in hw/rdma/vmw/pvrdma_main.c in QEMU has a Memory leak after an initialisation error. CVE-2018-20123 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-20123.html CVE-2018-20123 https://bugzilla.suse.com/1119437 SUSE Bug 1119437 https://bugzilla.suse.com/1119438 SUSE Bug 1119438 hw/rdma/rdma_backend.c in QEMU allows guest OS users to trigger out-of-bounds access via a PvrdmaSqWqe ring element with a large num_sge value. CVE-2018-20124 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-20124.html CVE-2018-20124 https://bugzilla.suse.com/1119840 SUSE Bug 1119840 https://bugzilla.suse.com/1119841 SUSE Bug 1119841 hw/rdma/vmw/pvrdma_cmd.c in QEMU allows attackers to cause a denial of service (NULL pointer dereference or excessive memory allocation) in create_cq_ring or create_qp_rings. CVE-2018-20125 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-20125.html CVE-2018-20125 https://bugzilla.suse.com/1119989 SUSE Bug 1119989 hw/rdma/vmw/pvrdma_cmd.c in QEMU allows create_cq and create_qp memory leaks because errors are mishandled. CVE-2018-20126 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-20126.html CVE-2018-20126 https://bugzilla.suse.com/1119991 SUSE Bug 1119991 hw/rdma/vmw/pvrdma_main.c in QEMU does not implement a read operation (such as uar_read by analogy to uar_write), which allows attackers to cause a denial of service (NULL pointer dereference). CVE-2018-20191 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-20191.html CVE-2018-20191 https://bugzilla.suse.com/1119979 SUSE Bug 1119979 https://bugzilla.suse.com/1119980 SUSE Bug 1119980 QEMU can have an infinite loop in hw/rdma/vmw/pvrdma_dev_ring.c because return values are not checked (and -1 is mishandled). CVE-2018-20216 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-20216.html CVE-2018-20216 https://bugzilla.suse.com/1119984 SUSE Bug 1119984 https://bugzilla.suse.com/1119985 SUSE Bug 1119985 In QEMU 3.1.0, load_device_tree in device_tree.c calls the deprecated load_image function, which has a buffer overflow risk. CVE-2018-20815 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-20815.html CVE-2018-20815 https://bugzilla.suse.com/1118900 SUSE Bug 1118900 https://bugzilla.suse.com/1130675 SUSE Bug 1130675 https://bugzilla.suse.com/1130680 SUSE Bug 1130680 https://bugzilla.suse.com/1138043 SUSE Bug 1138043 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4. CVE-2018-3639 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-3639.html CVE-2018-3639 https://bugzilla.suse.com/1074701 SUSE Bug 1074701 https://bugzilla.suse.com/1085235 SUSE Bug 1085235 https://bugzilla.suse.com/1085308 SUSE Bug 1085308 https://bugzilla.suse.com/1087078 SUSE Bug 1087078 https://bugzilla.suse.com/1087082 SUSE Bug 1087082 https://bugzilla.suse.com/1092631 SUSE Bug 1092631 https://bugzilla.suse.com/1092885 SUSE Bug 1092885 https://bugzilla.suse.com/1094912 SUSE Bug 1094912 https://bugzilla.suse.com/1098813 SUSE Bug 1098813 https://bugzilla.suse.com/1100394 SUSE Bug 1100394 https://bugzilla.suse.com/1102640 SUSE Bug 1102640 https://bugzilla.suse.com/1105412 SUSE Bug 1105412 https://bugzilla.suse.com/1111963 SUSE Bug 1111963 https://bugzilla.suse.com/1172781 SUSE Bug 1172781 https://bugzilla.suse.com/1172782 SUSE Bug 1172782 https://bugzilla.suse.com/1172783 SUSE Bug 1172783 https://bugzilla.suse.com/1173489 SUSE Bug 1173489 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 https://bugzilla.suse.com/1215674 SUSE Bug 1215674 Quick Emulator (aka QEMU), when built with the Cirrus CLGD 54xx VGA Emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds access and QEMU process crash) by leveraging incorrect region calculation when updating VGA display. CVE-2018-7858 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7858.html CVE-2018-7858 https://bugzilla.suse.com/1084604 SUSE Bug 1084604 unknown CVE-2019-03812 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-03812.html CVE-2019-03812 TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. CVE-2019-11135 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-11135.html CVE-2019-11135 https://bugzilla.suse.com/1139073 SUSE Bug 1139073 https://bugzilla.suse.com/1152497 SUSE Bug 1152497 https://bugzilla.suse.com/1152505 SUSE Bug 1152505 https://bugzilla.suse.com/1152506 SUSE Bug 1152506 https://bugzilla.suse.com/1160120 SUSE Bug 1160120 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 interface_release_resource in hw/display/qxl.c in QEMU 3.1.x through 4.0.0 has a NULL pointer dereference. CVE-2019-12155 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-12155.html CVE-2019-12155 https://bugzilla.suse.com/1135902 SUSE Bug 1135902 https://bugzilla.suse.com/1135905 SUSE Bug 1135905 qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name (obtained from bridge.conf or a --br=bridge option) is limited to the IFNAMSIZ size, which can lead to an ACL bypass. CVE-2019-13164 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-13164.html CVE-2019-13164 https://bugzilla.suse.com/1140402 SUSE Bug 1140402 ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment. CVE-2019-14378 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-14378.html CVE-2019-14378 https://bugzilla.suse.com/1143794 SUSE Bug 1143794 https://bugzilla.suse.com/1143797 SUSE Bug 1143797 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reass in ip_input.c. CVE-2019-15890 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-15890.html CVE-2019-15890 https://bugzilla.suse.com/1149811 SUSE Bug 1149811 https://bugzilla.suse.com/1149813 SUSE Bug 1149813 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow. CVE-2019-6778 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-6778.html CVE-2019-6778 https://bugzilla.suse.com/1123156 SUSE Bug 1123156 https://bugzilla.suse.com/1123157 SUSE Bug 1123157 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 hw/ppc/spapr.c in QEMU through 3.1.0 allows Information Exposure because the hypervisor shares the /proc/device-tree/system-id and /proc/device-tree/model system attributes with a guest. CVE-2019-8934 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-8934.html CVE-2019-8934 https://bugzilla.suse.com/1118900 SUSE Bug 1118900 https://bugzilla.suse.com/1126455 SUSE Bug 1126455 tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure. CVE-2019-9824 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-9824.html CVE-2019-9824 https://bugzilla.suse.com/1118900 SUSE Bug 1118900 https://bugzilla.suse.com/1129622 SUSE Bug 1129622 https://bugzilla.suse.com/1129623 SUSE Bug 1129623 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 A flaw was found in QEMU in the implementation of the Pointer Authentication (PAuth) support for ARM introduced in version 4.0 and fixed in version 5.0.0. A general failure of the signature generation process caused every PAuth-enforced pointer to be signed with the same signature. A local attacker could obtain the signature of a protected pointer and abuse this flaw to bypass PAuth protection for all programs running on QEMU. CVE-2020-10702 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-10702.html CVE-2020-10702 https://bugzilla.suse.com/1168681 SUSE Bug 1168681 A potential DoS flaw was found in the virtio-fs shared file system daemon (virtiofsd) implementation of the QEMU version >= v5.0. Virtio-fs is meant to share a host file system directory with a guest via virtio-fs device. If the guest opens the maximum number of file descriptors under the shared directory, a denial of service may occur. This flaw allows a guest user/process to cause this denial of service on the host. CVE-2020-10717 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-10717.html CVE-2020-10717 https://bugzilla.suse.com/1171110 SUSE Bug 1171110 An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server resulting in a denial of service. CVE-2020-10761 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-10761.html CVE-2020-10761 https://bugzilla.suse.com/1172710 SUSE Bug 1172710 hw/net/tulip.c in QEMU 4.2.0 has a buffer overflow during the copying of tx/rx buffers because the frame size is not validated against the r/w data length. CVE-2020-11102 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-11102.html CVE-2020-11102 https://bugzilla.suse.com/1168713 SUSE Bug 1168713 An integer overflow was found in QEMU 4.0.1 through 4.2.0 in the way it implemented ATI VGA emulation. This flaw occurs in the ati_2d_blt() routine in hw/display/ati-2d.c while handling MMIO write operations through the ati_mm_write() callback. A malicious guest could abuse this flaw to crash the QEMU process, resulting in a denial of service. CVE-2020-11869 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-11869.html CVE-2020-11869 https://bugzilla.suse.com/1170537 SUSE Bug 1170537 https://bugzilla.suse.com/1188609 SUSE Bug 1188609 In QEMU 5.0.0 and earlier, es1370_transfer_audio in hw/audio/es1370.c does not properly validate the frame count, which allows guest OS users to trigger an out-of-bounds access during an es1370_write() operation. CVE-2020-13361 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-13361.html CVE-2020-13361 https://bugzilla.suse.com/1172384 SUSE Bug 1172384 In QEMU 5.0.0 and earlier, megasas_lookup_frame in hw/scsi/megasas.c has an out-of-bounds read via a crafted reply_queue_head field from a guest OS user. CVE-2020-13362 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-13362.html CVE-2020-13362 https://bugzilla.suse.com/1172383 SUSE Bug 1172383 address_space_map in exec.c in QEMU 4.2.0 can trigger a NULL pointer dereference related to BounceBuffer. CVE-2020-13659 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-13659.html CVE-2020-13659 https://bugzilla.suse.com/1172386 SUSE Bug 1172386 ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mm_index value during an ati_mm_read or ati_mm_write call. CVE-2020-13800 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-13800.html CVE-2020-13800 https://bugzilla.suse.com/1172495 SUSE Bug 1172495 An out-of-bounds read/write access flaw was found in the USB emulator of the QEMU in versions before 5.2.0. This issue occurs while processing USB packets from a guest when USBDevice 'setup_len' exceeds its 'data_buf[4096]' in the do_token_in, do_token_out routines. This flaw allows a guest user to crash the QEMU process, resulting in a denial of service, or the potential execution of arbitrary code with the privileges of the QEMU process on the host. CVE-2020-14364 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-14364.html CVE-2020-14364 https://bugzilla.suse.com/1175441 SUSE Bug 1175441 https://bugzilla.suse.com/1175534 SUSE Bug 1175534 https://bugzilla.suse.com/1176494 SUSE Bug 1176494 https://bugzilla.suse.com/1177130 SUSE Bug 1177130 In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could use this flaw to abort the QEMU process on the host, resulting in a denial of service condition in net_tx_pkt_add_raw_fragment in hw/net/net_tx_pkt.c. CVE-2020-16092 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-16092.html CVE-2020-16092 https://bugzilla.suse.com/1174641 SUSE Bug 1174641 An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. A remote user could use this flaw to crash the QEMU process, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host. CVE-2020-1711 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-1711.html CVE-2020-1711 https://bugzilla.suse.com/1166240 SUSE Bug 1166240 A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhci_sdma_transfer_multi_blocks() routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition, or potentially execute arbitrary code with privileges of the QEMU process on the host. CVE-2020-17380 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-17380.html CVE-2020-17380 https://bugzilla.suse.com/1175144 SUSE Bug 1175144 https://bugzilla.suse.com/1182282 SUSE Bug 1182282 A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service. CVE-2020-1983 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-1983.html CVE-2020-1983 https://bugzilla.suse.com/1170940 SUSE Bug 1170940 QEMU 5.0.0 has a heap-based Buffer Overflow in flatview_read_continue in exec.c because hw/sd/sdhci.c mishandles a write operation in the SDHC_BLKSIZE case. CVE-2020-25085 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-25085.html CVE-2020-25085 https://bugzilla.suse.com/1176681 SUSE Bug 1176681 https://bugzilla.suse.com/1182282 SUSE Bug 1182282 A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on the host, resulting in a denial of service. CVE-2020-25723 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-25723.html CVE-2020-25723 https://bugzilla.suse.com/1178934 SUSE Bug 1178934 https://bugzilla.suse.com/1178935 SUSE Bug 1178935 A flaw was found in the memory management API of QEMU during the initialization of a memory region cache. This issue could lead to an out-of-bounds write access to the MSI-X table while performing MMIO operations. A guest user may abuse this flaw to crash the QEMU process on the host, resulting in a denial of service. This flaw affects QEMU versions prior to 5.2.0. CVE-2020-27821 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-27821.html CVE-2020-27821 https://bugzilla.suse.com/1179686 SUSE Bug 1179686 ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length. CVE-2020-29129 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-29129.html CVE-2020-29129 https://bugzilla.suse.com/1179466 SUSE Bug 1179466 https://bugzilla.suse.com/1179467 SUSE Bug 1179467 https://bugzilla.suse.com/1179477 SUSE Bug 1179477 https://bugzilla.suse.com/1179484 SUSE Bug 1179484 tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code. CVE-2020-7039 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-7039.html CVE-2020-7039 https://bugzilla.suse.com/1161066 SUSE Bug 1161066 In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf return values, leading to a buffer overflow in later code. CVE-2020-8608 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-8608.html CVE-2020-8608 https://bugzilla.suse.com/1163018 SUSE Bug 1163018 https://bugzilla.suse.com/1163019 SUSE Bug 1163019 A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability. CVE-2021-20181 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-20181.html CVE-2021-20181 https://bugzilla.suse.com/1182137 SUSE Bug 1182137 An integer overflow issue was found in the vmxnet3 NIC emulator of the QEMU for versions up to v5.2.0. It may occur if a guest was to supply invalid values for rx/tx queue size or other NIC parameters. A privileged guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario. CVE-2021-20203 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-20203.html CVE-2021-20203 https://bugzilla.suse.com/1181639 SUSE Bug 1181639 An out-of-bounds heap buffer access issue was found in the ARM Generic Interrupt Controller emulator of QEMU up to and including qemu 4.2.0on aarch64 platform. The issue occurs because while writing an interrupt ID to the controller memory area, it is not masked to be 4 bits wide. It may lead to the said issue while updating controller state fields and their subsequent processing. A privileged guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario. CVE-2021-20221 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-20221.html CVE-2021-20221 https://bugzilla.suse.com/1181933 SUSE Bug 1181933 An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability. CVE-2021-20257 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-20257.html CVE-2021-20257 https://bugzilla.suse.com/1182577 SUSE Bug 1182577 https://bugzilla.suse.com/1182846 SUSE Bug 1182846 A flaw was found in the virtio-fs shared file system daemon (virtiofsd) of QEMU. The new 'xattrmap' option may cause the 'security.capability' xattr in the guest to not drop on file write, potentially leading to a modified, privileged executable in the guest. In rare circumstances, this flaw could be used by a malicious user to elevate their privileges within the guest. CVE-2021-20263 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-20263.html CVE-2021-20263 https://bugzilla.suse.com/1183373 SUSE Bug 1183373 A potential stack overflow via infinite loop issue was found in various NIC emulators of QEMU in versions up to and including 5.2.0. The issue occurs in loopback mode of a NIC wherein reentrant DMA checks get bypassed. A guest user/process may use this flaw to consume CPU cycles or crash the QEMU process on the host resulting in DoS scenario. CVE-2021-3416 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3416.html CVE-2021-3416 https://bugzilla.suse.com/1182968 SUSE Bug 1182968 https://bugzilla.suse.com/1186473 SUSE Bug 1186473 A flaw was found in the USB redirector device (usb-redir) of QEMU. Small USB packets are combined into a single, large transfer request, to reduce the overhead and improve performance. The combined size of the bulk transfer is used to dynamically allocate a variable length array (VLA) on the stack without proper validation. Since the total size is not bounded, a malicious guest could use this flaw to influence the array length and cause the QEMU process to perform an excessive allocation on the stack, resulting in a denial of service. CVE-2021-3527 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3527.html CVE-2021-3527 https://bugzilla.suse.com/1186012 SUSE Bug 1186012 Several memory leaks were found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU in versions up to and including 6.0. They exist in contrib/vhost-user-gpu/vhost-user-gpu.c and contrib/vhost-user-gpu/virgl.c due to improper release of memory (i.e., free) after effective lifetime. CVE-2021-3544 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3544.html CVE-2021-3544 https://bugzilla.suse.com/1186010 SUSE Bug 1186010 An information disclosure vulnerability was found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU in versions up to and including 6.0. The flaw exists in virgl_cmd_get_capset_info() in contrib/vhost-user-gpu/virgl.c and could occur due to the read of uninitialized memory. A malicious guest could exploit this issue to leak memory from the host. CVE-2021-3545 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3545.html CVE-2021-3545 https://bugzilla.suse.com/1185990 SUSE Bug 1185990 An out-of-bounds write vulnerability was found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU in versions up to and including 6.0. The flaw occurs while processing the 'VIRTIO_GPU_CMD_GET_CAPSET' command from the guest. It could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service condition, or potential code execution with the privileges of the QEMU process. CVE-2021-3546 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3546.html CVE-2021-3546 https://bugzilla.suse.com/1185981 SUSE Bug 1185981 A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. The issue occurs while handling a "PVRDMA_CMD_CREATE_MR" command due to improper memory remapping (mremap). This flaw allows a malicious guest to crash the QEMU process on the host. The highest threat from this vulnerability is to system availability. CVE-2021-3582 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3582.html CVE-2021-3582 https://bugzilla.suse.com/1187499 SUSE Bug 1187499 An integer overflow was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior to 6.1.0. The issue occurs while handling a "PVRDMA_REG_DSRHIGH" write from the guest due to improper input validation. This flaw allows a privileged guest user to make QEMU allocate a large amount of memory, resulting in a denial of service. The highest threat from this vulnerability is to system availability. CVE-2021-3607 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3607.html CVE-2021-3607 https://bugzilla.suse.com/1187539 SUSE Bug 1187539 A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior to 6.1.0. The issue occurs while handling a "PVRDMA_REG_DSRHIGH" write from the guest and may result in a crash of QEMU or cause undefined behavior due to the access of an uninitialized pointer. The highest threat from this vulnerability is to system availability. CVE-2021-3608 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3608.html CVE-2021-3608 https://bugzilla.suse.com/1187538 SUSE Bug 1187538 A flaw was found in the USB redirector device emulation of QEMU in versions prior to 6.1.0-rc2. It occurs when dropping packets during a bulk transfer from a SPICE client due to the packet queue being full. A malicious SPICE client could use this flaw to make QEMU call free() with faked heap chunk metadata, resulting in a crash of QEMU or potential code execution with the privileges of the QEMU process on the host. CVE-2021-3682 openSUSE Tumbleweed:qemu-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-qtest-6.1.0-32.1 openSUSE Tumbleweed:qemu-accel-tcg-x86-6.1.0-32.1 openSUSE Tumbleweed:qemu-arm-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-alsa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-jack-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-pa-6.1.0-32.1 openSUSE Tumbleweed:qemu-audio-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-curl-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-dmg-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-gluster-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-iscsi-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-nfs-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-rbd-6.1.0-32.1 openSUSE Tumbleweed:qemu-block-ssh-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-baum-6.1.0-32.1 openSUSE Tumbleweed:qemu-chardev-spice-6.1.0-32.1 openSUSE Tumbleweed:qemu-extra-6.1.0-32.1 openSUSE Tumbleweed:qemu-guest-agent-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-qxl-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-gpu-pci-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-display-virtio-vga-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-s390x-virtio-gpu-ccw-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-host-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-redirect-6.1.0-32.1 openSUSE Tumbleweed:qemu-hw-usb-smartcard-6.1.0-32.1 openSUSE Tumbleweed:qemu-ipxe-1.0.0+-32.1 openSUSE Tumbleweed:qemu-ivshmem-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ksm-6.1.0-32.1 openSUSE Tumbleweed:qemu-kvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-lang-6.1.0-32.1 openSUSE Tumbleweed:qemu-microvm-6.1.0-32.1 openSUSE Tumbleweed:qemu-ppc-6.1.0-32.1 openSUSE Tumbleweed:qemu-s390x-6.1.0-32.1 openSUSE Tumbleweed:qemu-seabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-sgabios-8-32.1 openSUSE Tumbleweed:qemu-skiboot-6.1.0-32.1 openSUSE Tumbleweed:qemu-tools-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-curses-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-gtk-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-opengl-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-app-6.1.0-32.1 openSUSE Tumbleweed:qemu-ui-spice-core-6.1.0-32.1 openSUSE Tumbleweed:qemu-vgabios-1.14.0_0_g155821a-32.1 openSUSE Tumbleweed:qemu-vhost-user-gpu-6.1.0-32.1 openSUSE Tumbleweed:qemu-x86-6.1.0-32.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3682.html CVE-2021-3682 https://bugzilla.suse.com/1189145 SUSE Bug 1189145