SUSE-SU-2023:2358-1 -- SLES qemu, qemu-guest-agentID: oval:org.secpod.oval:def:89048930 | Date: (C)2023-07-18 (M)2024-05-22 |
Class: PATCH | Family: unix |
This update for qemu fixes the following issues: * CVE-2022-0216: Fixed a use-after-free in lsi_do_msgout in hw/scsi/lsi53c895a.c . * CVE-2021-3929: Fixed use-after-free in nvme, caused by DMA reentrancy issue . * CVE-2021-4207: Fixed heap buffer overflow caused by double fetch in qxl_cursor . * CVE-2021-4206: Fixed integer overflow in cursor_alloc . * Amend .changes file: avoid declaring a still unfixed CVE, as fixed * Fix the build breaks caused by binutils update
Platform: |
SUSE Linux Enterprise Server 12 SP2 |
Product: |
qemu |
qemu-guest-agent |