SUSE-SU-2023:2358-1 -- SLES qemu, qemu-guest-agent| ID: oval:org.secpod.oval:def:89048930 | Date: (C)2023-07-18 (M)2024-04-17 |
| Class: PATCH | Family: unix |
This update for qemu fixes the following issues: * CVE-2022-0216: Fixed a use-after-free in lsi_do_msgout in hw/scsi/lsi53c895a.c . * CVE-2021-3929: Fixed use-after-free in nvme, caused by DMA reentrancy issue . * CVE-2021-4207: Fixed heap buffer overflow caused by double fetch in qxl_cursor . * CVE-2021-4206: Fixed integer overflow in cursor_alloc . * Amend .changes file: avoid declaring a still unfixed CVE, as fixed * Fix the build breaks caused by binutils update
| Platform: |
| SUSE Linux Enterprise Server 12 SP2 |
| Product: |
| qemu |
| qemu-guest-agent |
