Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-18954 (GCVE-0-2018-18954)
Vulnerability from cvelistv5
Published
2018-11-15 20:00
Modified
2024-08-05 11:23
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T11:23:08.905Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "USN-3826-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "https://usn.ubuntu.com/3826-1/" }, { "name": "[oss-security] 20181107 CVE-2018-18954 QEMU: ppc64: Out-of-bounds r/w stack access in pnv_lpc_do_eccb", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2018/11/06/6" }, { "name": "105920", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/105920" }, { "name": "[Qemu-devel] 20181103 [PATCH v2] ppc/pnv: check size before data buffer access", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html" }, { "name": "openSUSE-SU-2019:1074", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "name": "DSA-4454", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "name": "20190531 [SECURITY] [DSA 4454-1] qemu security update", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "https://seclists.org/bugtraq/2019/May/76" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2018-11-03T00:00:00", "descriptions": [ { "lang": "en", "value": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-05-31T13:06:06", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre" }, "references": [ { "name": "USN-3826-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "https://usn.ubuntu.com/3826-1/" }, { "name": "[oss-security] 20181107 CVE-2018-18954 QEMU: ppc64: Out-of-bounds r/w stack access in pnv_lpc_do_eccb", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2018/11/06/6" }, { "name": "105920", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/105920" }, { "name": "[Qemu-devel] 20181103 [PATCH v2] ppc/pnv: check size before data buffer access", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html" }, { "name": "openSUSE-SU-2019:1074", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "name": "DSA-4454", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "name": "20190531 [SECURITY] [DSA 4454-1] qemu security update", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "https://seclists.org/bugtraq/2019/May/76" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-18954", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "USN-3826-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/3826-1/" }, { "name": "[oss-security] 20181107 CVE-2018-18954 QEMU: ppc64: Out-of-bounds r/w stack access in pnv_lpc_do_eccb", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2018/11/06/6" }, { "name": "105920", "refsource": "BID", "url": "http://www.securityfocus.com/bid/105920" }, { "name": "[Qemu-devel] 20181103 [PATCH v2] ppc/pnv: check size before data buffer access", "refsource": "MLIST", "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html" }, { "name": "openSUSE-SU-2019:1074", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "name": "DSA-4454", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2019/dsa-4454" }, { "name": "20190531 [SECURITY] [DSA 4454-1] qemu security update", "refsource": "BUGTRAQ", "url": "https://seclists.org/bugtraq/2019/May/76" } ] } } } }, "cveMetadata": { "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2018-18954", "datePublished": "2018-11-15T20:00:00", "dateReserved": "2018-11-05T00:00:00", "dateUpdated": "2024-08-05T11:23:08.905Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "vulnerability-lookup:meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2018-18954\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2018-11-15T20:29:00.410\",\"lastModified\":\"2024-11-21T03:56:56.263\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n pnv_lpc_do_eccb en hw/ppc/pnv_lpc.c en Qemu en versiones anteriores a la 3.1 permite el acceso de escritura o lectura fuera de l\u00edmites a la memoria PowerNV.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"},{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.1\",\"matchCriteriaId\":\"CE8BCB09-FC12-4378-92F8-C1148F2AD038\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07C312A0-CD2C-4B9C-B064-6409B25C278F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2018/11/06/6\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105920\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/bugtraq/2019/May/76\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://usn.ubuntu.com/3826-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4454\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2018/11/06/6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105920\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/bugtraq/2019/May/76\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/3826-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4454\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}" } }
fkie_cve-2018-18954
Vulnerability from fkie_nvd
Published
2018-11-15 20:29
Modified
2024-11-21 03:56
Severity ?
Summary
The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.
References
▶ | URL | Tags | |
---|---|---|---|
cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html | Mailing List, Third Party Advisory | |
cve@mitre.org | http://www.openwall.com/lists/oss-security/2018/11/06/6 | Mailing List, Patch, Third Party Advisory | |
cve@mitre.org | http://www.securityfocus.com/bid/105920 | Third Party Advisory, VDB Entry | |
cve@mitre.org | https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html | Mailing List, Patch, Third Party Advisory | |
cve@mitre.org | https://seclists.org/bugtraq/2019/May/76 | ||
cve@mitre.org | https://usn.ubuntu.com/3826-1/ | Third Party Advisory | |
cve@mitre.org | https://www.debian.org/security/2019/dsa-4454 | ||
af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html | Mailing List, Third Party Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2018/11/06/6 | Mailing List, Patch, Third Party Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/105920 | Third Party Advisory, VDB Entry | |
af854a3a-2127-422b-91ae-364da2661108 | https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html | Mailing List, Patch, Third Party Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | https://seclists.org/bugtraq/2019/May/76 | ||
af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/3826-1/ | Third Party Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2019/dsa-4454 |
Impacted products
Vendor | Product | Version | |
---|---|---|---|
qemu | qemu | * | |
canonical | ubuntu_linux | 18.04 | |
canonical | ubuntu_linux | 18.10 | |
opensuse | leap | 42.3 |
{ "configurations": [ { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "matchCriteriaId": "CE8BCB09-FC12-4378-92F8-C1148F2AD038", "versionEndExcluding": "3.1", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D", "vulnerable": true }, { "criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "matchCriteriaId": "07C312A0-CD2C-4B9C-B064-6409B25C278F", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "matchCriteriaId": "5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3", "vulnerable": true } ], "negate": false, "operator": "OR" } ] } ], "cveTags": [], "descriptions": [ { "lang": "en", "value": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory." }, { "lang": "es", "value": "La funci\u00f3n pnv_lpc_do_eccb en hw/ppc/pnv_lpc.c en Qemu en versiones anteriores a la 3.1 permite el acceso de escritura o lectura fuera de l\u00edmites a la memoria PowerNV." } ], "id": "CVE-2018-18954", "lastModified": "2024-11-21T03:56:56.263", "metrics": { "cvssMetricV2": [ { "acInsufInfo": false, "baseSeverity": "LOW", "cvssData": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false } ], "cvssMetricV30": [ { "cvssData": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary" } ] }, "published": "2018-11-15T20:29:00.410", "references": [ { "source": "cve@mitre.org", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "source": "cve@mitre.org", "tags": [ "Mailing List", "Patch", "Third Party Advisory" ], "url": "http://www.openwall.com/lists/oss-security/2018/11/06/6" }, { "source": "cve@mitre.org", "tags": [ "Third Party Advisory", "VDB Entry" ], "url": "http://www.securityfocus.com/bid/105920" }, { "source": "cve@mitre.org", "tags": [ "Mailing List", "Patch", "Third Party Advisory" ], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html" }, { "source": "cve@mitre.org", "url": "https://seclists.org/bugtraq/2019/May/76" }, { "source": "cve@mitre.org", "tags": [ "Third Party Advisory" ], "url": "https://usn.ubuntu.com/3826-1/" }, { "source": "cve@mitre.org", "url": "https://www.debian.org/security/2019/dsa-4454" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Mailing List", "Patch", "Third Party Advisory" ], "url": "http://www.openwall.com/lists/oss-security/2018/11/06/6" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Third Party Advisory", "VDB Entry" ], "url": "http://www.securityfocus.com/bid/105920" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Mailing List", "Patch", "Third Party Advisory" ], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://seclists.org/bugtraq/2019/May/76" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Third Party Advisory" ], "url": "https://usn.ubuntu.com/3826-1/" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.debian.org/security/2019/dsa-4454" } ], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [ { "description": [ { "lang": "en", "value": "CWE-125" }, { "lang": "en", "value": "CWE-787" } ], "source": "nvd@nist.gov", "type": "Primary" } ] }
opensuse-su-2019:0254-1
Vulnerability from csaf_opensuse
Published
2019-03-23 11:07
Modified
2019-03-23 11:07
Summary
Security update for qemu
Notes
Title of the patch
Security update for qemu
Description of the patch
This update for qemu fixes the following issues:
Security issues fixed:
- CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156).
- CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493).
- CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275).
- CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717).
- CVE-2018-18954: Fixed a denial of service vulnerability related to PowerPC PowerNV memory operations (bsc#1114957).
Non-security issues fixed:
- Improved disk performance for qemu on xen (bsc#1100408).
- Fixed xen offline migration (bsc#1079730, bsc#1101982, bsc#1063993).
- Fixed pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600).
- Use /bin/bash to echo value into sys fs for ksm control (bsc#1112646).
- Return specification exception for unimplemented diag 308 subcodes rather than a hardware error (bsc#1123179).
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames
openSUSE-2019-254
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for qemu", "title": "Title of the patch" }, { "category": "description", "text": "This update for qemu fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156).\n- CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493).\n- CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275).\n- CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717).\n- CVE-2018-18954: Fixed a denial of service vulnerability related to PowerPC PowerNV memory operations (bsc#1114957).\n\nNon-security issues fixed:\n\n- Improved disk performance for qemu on xen (bsc#1100408).\n- Fixed xen offline migration (bsc#1079730, bsc#1101982, bsc#1063993).\n- Fixed pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600).\n- Use /bin/bash to echo value into sys fs for ksm control (bsc#1112646).\n- Return specification exception for unimplemented diag 308 subcodes rather than a hardware error (bsc#1123179).\n\nThis update was imported from the SUSE:SLE-15:Update update project.", "title": "Description of the patch" }, { "category": "details", "text": "openSUSE-2019-254", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_0254-1.json" }, { "category": "self", "summary": "URL for openSUSE-SU-2019:0254-1", "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/CFHQEGEI3EZECFQN4HM6ST73KWNYQDTG/#CFHQEGEI3EZECFQN4HM6ST73KWNYQDTG" }, { "category": "self", "summary": "E-Mail link for openSUSE-SU-2019:0254-1", "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/CFHQEGEI3EZECFQN4HM6ST73KWNYQDTG/#CFHQEGEI3EZECFQN4HM6ST73KWNYQDTG" }, { "category": "self", "summary": "SUSE Bug 1063993", "url": "https://bugzilla.suse.com/1063993" }, { "category": "self", "summary": "SUSE Bug 1079730", "url": "https://bugzilla.suse.com/1079730" }, { "category": "self", "summary": "SUSE Bug 1100408", "url": "https://bugzilla.suse.com/1100408" }, { "category": "self", "summary": "SUSE Bug 1101982", "url": "https://bugzilla.suse.com/1101982" }, { "category": "self", "summary": "SUSE Bug 1112646", "url": "https://bugzilla.suse.com/1112646" }, { "category": "self", "summary": "SUSE Bug 1114957", "url": "https://bugzilla.suse.com/1114957" }, { "category": "self", "summary": "SUSE Bug 1116717", "url": "https://bugzilla.suse.com/1116717" }, { "category": "self", "summary": "SUSE Bug 1117275", "url": "https://bugzilla.suse.com/1117275" }, { "category": "self", "summary": "SUSE Bug 1119493", "url": "https://bugzilla.suse.com/1119493" }, { "category": "self", "summary": "SUSE Bug 1121600", "url": "https://bugzilla.suse.com/1121600" }, { "category": "self", "summary": "SUSE Bug 1123156", "url": "https://bugzilla.suse.com/1123156" }, { "category": "self", "summary": "SUSE Bug 1123179", "url": "https://bugzilla.suse.com/1123179" }, { "category": "self", "summary": "SUSE CVE CVE-2018-16872 page", "url": "https://www.suse.com/security/cve/CVE-2018-16872/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-18954 page", "url": "https://www.suse.com/security/cve/CVE-2018-18954/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-19364 page", "url": "https://www.suse.com/security/cve/CVE-2018-19364/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-19489 page", "url": "https://www.suse.com/security/cve/CVE-2018-19489/" }, { "category": "self", "summary": "SUSE CVE CVE-2019-6778 page", "url": "https://www.suse.com/security/cve/CVE-2019-6778/" } ], "title": "Security update for qemu", "tracking": { "current_release_date": "2019-03-23T11:07:37Z", "generator": { "date": "2019-03-23T11:07:37Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "openSUSE-SU-2019:0254-1", "initial_release_date": "2019-03-23T11:07:37Z", "revision_history": [ { "date": "2019-03-23T11:07:37Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "product": { "name": "qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "product_id": "qemu-ipxe-1.0.0+-lp150.7.18.1.noarch" } }, { "category": "product_version", "name": "qemu-seabios-1.11.0-lp150.7.18.1.noarch", "product": { "name": "qemu-seabios-1.11.0-lp150.7.18.1.noarch", "product_id": "qemu-seabios-1.11.0-lp150.7.18.1.noarch" } }, { "category": "product_version", "name": "qemu-sgabios-8-lp150.7.18.1.noarch", "product": { "name": "qemu-sgabios-8-lp150.7.18.1.noarch", "product_id": "qemu-sgabios-8-lp150.7.18.1.noarch" } }, { "category": "product_version", "name": "qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "product": { "name": "qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "product_id": "qemu-vgabios-1.11.0-lp150.7.18.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-arm-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-arm-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-block-curl-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-extra-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-extra-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-ksm-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-kvm-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-lang-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-lang-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-linux-user-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-ppc-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-s390-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-s390-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-testsuite-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-tools-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-tools-2.11.2-lp150.7.18.1.x86_64" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-lp150.7.18.1.x86_64", "product": { "name": "qemu-x86-2.11.2-lp150.7.18.1.x86_64", "product_id": "qemu-x86-2.11.2-lp150.7.18.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "openSUSE Leap 15.0", "product": { "name": "openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0", "product_identification_helper": { "cpe": "cpe:/o:opensuse:leap:15.0" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-arm-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-arm-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-extra-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-extra-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ipxe-1.0.0+-lp150.7.18.1.noarch as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch" }, "product_reference": "qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ksm-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-lang-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-linux-user-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ppc-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-s390-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-s390-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-seabios-1.11.0-lp150.7.18.1.noarch as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch" }, "product_reference": "qemu-seabios-1.11.0-lp150.7.18.1.noarch", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-sgabios-8-lp150.7.18.1.noarch as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch" }, "product_reference": "qemu-sgabios-8-lp150.7.18.1.noarch", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-testsuite-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-tools-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-vgabios-1.11.0-lp150.7.18.1.noarch as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch" }, "product_reference": "qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "relates_to_product_reference": "openSUSE Leap 15.0" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-x86-2.11.2-lp150.7.18.1.x86_64 as component of openSUSE Leap 15.0", "product_id": "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" }, "product_reference": "qemu-x86-2.11.2-lp150.7.18.1.x86_64", "relates_to_product_reference": "openSUSE Leap 15.0" } ] }, "vulnerabilities": [ { "cve": "CVE-2018-16872", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-16872" } ], "notes": [ { "category": "general", "text": "A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn\u0027t consider that the underlying filesystem may have changed since the time lstat(2) was called in usb_mtp_object_alloc, a classical TOCTTOU problem. An attacker with write access to the host filesystem shared with a guest can use this property to navigate the host filesystem in the context of the QEMU process and read any file the QEMU process has access to. Access to the filesystem may be local or via a network share protocol such as CIFS.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-16872", "url": "https://www.suse.com/security/cve/CVE-2018-16872" }, { "category": "external", "summary": "SUSE Bug 1119493 for CVE-2018-16872", "url": "https://bugzilla.suse.com/1119493" }, { "category": "external", "summary": "SUSE Bug 1119494 for CVE-2018-16872", "url": "https://bugzilla.suse.com/1119494" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L", "version": "3.0" }, "products": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-23T11:07:37Z", "details": "moderate" } ], "title": "CVE-2018-16872" }, { "cve": "CVE-2018-18954", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-18954" } ], "notes": [ { "category": "general", "text": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-18954", "url": "https://www.suse.com/security/cve/CVE-2018-18954" }, { "category": "external", "summary": "SUSE Bug 1114957 for CVE-2018-18954", "url": "https://bugzilla.suse.com/1114957" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-23T11:07:37Z", "details": "important" } ], "title": "CVE-2018-18954" }, { "cve": "CVE-2018-19364", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-19364" } ], "notes": [ { "category": "general", "text": "hw/9pfs/cofile.c and hw/9pfs/9p.c in QEMU can modify an fid path while it is being accessed by a second thread, leading to (for example) a use-after-free outcome.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-19364", "url": "https://www.suse.com/security/cve/CVE-2018-19364" }, { "category": "external", "summary": "SUSE Bug 1116717 for CVE-2018-19364", "url": "https://bugzilla.suse.com/1116717" }, { "category": "external", "summary": "SUSE Bug 1116726 for CVE-2018-19364", "url": "https://bugzilla.suse.com/1116726" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H", "version": "3.0" }, "products": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-23T11:07:37Z", "details": "moderate" } ], "title": "CVE-2018-19364" }, { "cve": "CVE-2018-19489", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-19489" } ], "notes": [ { "category": "general", "text": "v9fs_wstat in hw/9pfs/9p.c in QEMU allows guest OS users to cause a denial of service (crash) because of a race condition during file renaming.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-19489", "url": "https://www.suse.com/security/cve/CVE-2018-19489" }, { "category": "external", "summary": "SUSE Bug 1117275 for CVE-2018-19489", "url": "https://bugzilla.suse.com/1117275" }, { "category": "external", "summary": "SUSE Bug 1117279 for CVE-2018-19489", "url": "https://bugzilla.suse.com/1117279" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 2.8, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L", "version": "3.0" }, "products": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-23T11:07:37Z", "details": "low" } ], "title": "CVE-2018-19489" }, { "cve": "CVE-2019-6778", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2019-6778" } ], "notes": [ { "category": "general", "text": "In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2019-6778", "url": "https://www.suse.com/security/cve/CVE-2019-6778" }, { "category": "external", "summary": "SUSE Bug 1123156 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1123156" }, { "category": "external", "summary": "SUSE Bug 1123157 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1123157" }, { "category": "external", "summary": "SUSE Bug 1178658 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1178658" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "openSUSE Leap 15.0:qemu-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-arm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-curl-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-dmg-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-gluster-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-iscsi-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-rbd-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-block-ssh-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-extra-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-guest-agent-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ipxe-1.0.0+-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-ksm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-kvm-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-lang-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-linux-user-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-ppc-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-s390-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-seabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-sgabios-8-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-testsuite-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-tools-2.11.2-lp150.7.18.1.x86_64", "openSUSE Leap 15.0:qemu-vgabios-1.11.0-lp150.7.18.1.noarch", "openSUSE Leap 15.0:qemu-x86-2.11.2-lp150.7.18.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-23T11:07:37Z", "details": "important" } ], "title": "CVE-2019-6778" } ] }
suse-su-2019:0582-1
Vulnerability from csaf_suse
Published
2019-03-11 17:34
Modified
2019-03-11 17:34
Summary
Security update for qemu
Notes
Title of the patch
Security update for qemu
Description of the patch
This update for qemu fixes the following issues:
Security vulnerabilities addressed:
- CVE-2019-6778: Fixed an out-of-bounds access in slirp (bsc#1123156)
- CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493)
- CVE-2018-19489: Fixed a Denial-of-Service in virtfs (bsc#1117275)
- CVE-2018-19364: Fixed an use-after-free vulnerability if virtfs interface is deliberately abused (bsc#1116717)
- CVE-2018-18954: Fixed an out-of-bounds access performing PowerNV memory operations (bsc#1114957)
- CVE-2017-13673: Fixed a reachable assert failure during during display update (bsc#1056386)
- CVE-2017-13672: Fixed an out-of-bounds read access during display update (bsc#1056334)
- CVE-2018-7858: Fixed an out-of-bounds access in cirrus when updating vga display allowing for Denial-of-Service (bsc#1084604)
Other bug fixes and changes:
- Fix pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600)
- Fix bad guest time after migration (bsc#1113231)
Patchnames
SUSE-2019-582,SUSE-SLE-DESKTOP-12-SP3-2019-582,SUSE-SLE-SERVER-12-SP3-2019-582
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for qemu", "title": "Title of the patch" }, { "category": "description", "text": "This update for qemu fixes the following issues:\n\nSecurity vulnerabilities addressed:\n\n- CVE-2019-6778: Fixed an out-of-bounds access in slirp (bsc#1123156)\n- CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493)\n- CVE-2018-19489: Fixed a Denial-of-Service in virtfs (bsc#1117275)\n- CVE-2018-19364: Fixed an use-after-free vulnerability if virtfs interface is deliberately abused (bsc#1116717)\n- CVE-2018-18954: Fixed an out-of-bounds access performing PowerNV memory operations (bsc#1114957)\n- CVE-2017-13673: Fixed a reachable assert failure during during display update (bsc#1056386)\n- CVE-2017-13672: Fixed an out-of-bounds read access during display update (bsc#1056334)\n- CVE-2018-7858: Fixed an out-of-bounds access in cirrus when updating vga display allowing for Denial-of-Service (bsc#1084604)\n\nOther bug fixes and changes:\n\n- Fix pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600)\n- Fix bad guest time after migration (bsc#1113231)\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-2019-582,SUSE-SLE-DESKTOP-12-SP3-2019-582,SUSE-SLE-SERVER-12-SP3-2019-582", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0582-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2019:0582-1", "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190582-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2019:0582-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-March/005184.html" }, { "category": "self", "summary": "SUSE Bug 1056334", "url": "https://bugzilla.suse.com/1056334" }, { "category": "self", "summary": "SUSE Bug 1056386", "url": "https://bugzilla.suse.com/1056386" }, { "category": "self", "summary": "SUSE Bug 1084604", "url": "https://bugzilla.suse.com/1084604" }, { "category": "self", "summary": "SUSE Bug 1113231", "url": "https://bugzilla.suse.com/1113231" }, { "category": "self", "summary": "SUSE Bug 1114957", "url": "https://bugzilla.suse.com/1114957" }, { "category": "self", "summary": "SUSE Bug 1116717", "url": "https://bugzilla.suse.com/1116717" }, { "category": "self", "summary": "SUSE Bug 1117275", "url": "https://bugzilla.suse.com/1117275" }, { "category": "self", "summary": "SUSE Bug 1119493", "url": "https://bugzilla.suse.com/1119493" }, { "category": "self", "summary": "SUSE Bug 1121600", "url": "https://bugzilla.suse.com/1121600" }, { "category": "self", "summary": "SUSE Bug 1123156", "url": "https://bugzilla.suse.com/1123156" }, { "category": "self", "summary": "SUSE CVE CVE-2017-13672 page", "url": "https://www.suse.com/security/cve/CVE-2017-13672/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-13673 page", "url": "https://www.suse.com/security/cve/CVE-2017-13673/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-16872 page", "url": "https://www.suse.com/security/cve/CVE-2018-16872/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-18954 page", "url": "https://www.suse.com/security/cve/CVE-2018-18954/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-19364 page", "url": "https://www.suse.com/security/cve/CVE-2018-19364/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-19489 page", "url": "https://www.suse.com/security/cve/CVE-2018-19489/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-7858 page", "url": "https://www.suse.com/security/cve/CVE-2018-7858/" }, { "category": "self", "summary": "SUSE CVE CVE-2019-6778 page", "url": "https://www.suse.com/security/cve/CVE-2019-6778/" } ], "title": "Security update for qemu", "tracking": { "current_release_date": "2019-03-11T17:34:20Z", "generator": { "date": "2019-03-11T17:34:20Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2019:0582-1", "initial_release_date": "2019-03-11T17:34:20Z", "revision_history": [ { "date": "2019-03-11T17:34:20Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "qemu-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-2.9.1-6.28.1.aarch64", "product_id": "qemu-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-arm-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-arm-2.9.1-6.28.1.aarch64", "product_id": "qemu-arm-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-curl-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-block-curl-2.9.1-6.28.1.aarch64", "product_id": "qemu-block-curl-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-dmg-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-block-dmg-2.9.1-6.28.1.aarch64", "product_id": "qemu-block-dmg-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-block-iscsi-2.9.1-6.28.1.aarch64", "product_id": "qemu-block-iscsi-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-rbd-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-block-rbd-2.9.1-6.28.1.aarch64", "product_id": "qemu-block-rbd-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-ssh-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-block-ssh-2.9.1-6.28.1.aarch64", "product_id": "qemu-block-ssh-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-extra-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-extra-2.9.1-6.28.1.aarch64", "product_id": "qemu-extra-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-guest-agent-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-guest-agent-2.9.1-6.28.1.aarch64", "product_id": "qemu-guest-agent-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-lang-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-lang-2.9.1-6.28.1.aarch64", "product_id": "qemu-lang-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-linux-user-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-linux-user-2.9.1-6.28.1.aarch64", "product_id": "qemu-linux-user-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-ppc-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-ppc-2.9.1-6.28.1.aarch64", "product_id": "qemu-ppc-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-s390-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-s390-2.9.1-6.28.1.aarch64", "product_id": "qemu-s390-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-tools-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-tools-2.9.1-6.28.1.aarch64", "product_id": "qemu-tools-2.9.1-6.28.1.aarch64" } }, { "category": "product_version", "name": "qemu-x86-2.9.1-6.28.1.aarch64", "product": { "name": "qemu-x86-2.9.1-6.28.1.aarch64", "product_id": "qemu-x86-2.9.1-6.28.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "qemu-2.9.1-6.28.1.i586", "product": { "name": "qemu-2.9.1-6.28.1.i586", "product_id": "qemu-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-arm-2.9.1-6.28.1.i586", "product": { "name": "qemu-arm-2.9.1-6.28.1.i586", "product_id": "qemu-arm-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-block-curl-2.9.1-6.28.1.i586", "product": { "name": "qemu-block-curl-2.9.1-6.28.1.i586", "product_id": "qemu-block-curl-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-block-dmg-2.9.1-6.28.1.i586", "product": { "name": "qemu-block-dmg-2.9.1-6.28.1.i586", "product_id": "qemu-block-dmg-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.9.1-6.28.1.i586", "product": { "name": "qemu-block-iscsi-2.9.1-6.28.1.i586", "product_id": "qemu-block-iscsi-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-block-ssh-2.9.1-6.28.1.i586", "product": { "name": "qemu-block-ssh-2.9.1-6.28.1.i586", "product_id": "qemu-block-ssh-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-extra-2.9.1-6.28.1.i586", "product": { "name": "qemu-extra-2.9.1-6.28.1.i586", "product_id": "qemu-extra-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-guest-agent-2.9.1-6.28.1.i586", "product": { "name": "qemu-guest-agent-2.9.1-6.28.1.i586", "product_id": "qemu-guest-agent-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-kvm-2.9.1-6.28.1.i586", "product": { "name": "qemu-kvm-2.9.1-6.28.1.i586", "product_id": "qemu-kvm-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-lang-2.9.1-6.28.1.i586", "product": { "name": "qemu-lang-2.9.1-6.28.1.i586", "product_id": "qemu-lang-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-linux-user-2.9.1-6.28.1.i586", "product": { "name": "qemu-linux-user-2.9.1-6.28.1.i586", "product_id": "qemu-linux-user-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-ppc-2.9.1-6.28.1.i586", "product": { "name": "qemu-ppc-2.9.1-6.28.1.i586", "product_id": "qemu-ppc-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-s390-2.9.1-6.28.1.i586", "product": { "name": "qemu-s390-2.9.1-6.28.1.i586", "product_id": "qemu-s390-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-tools-2.9.1-6.28.1.i586", "product": { "name": "qemu-tools-2.9.1-6.28.1.i586", "product_id": "qemu-tools-2.9.1-6.28.1.i586" } }, { "category": "product_version", "name": "qemu-x86-2.9.1-6.28.1.i586", "product": { "name": "qemu-x86-2.9.1-6.28.1.i586", "product_id": "qemu-x86-2.9.1-6.28.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "qemu-ipxe-1.0.0+-6.28.1.noarch", "product": { "name": "qemu-ipxe-1.0.0+-6.28.1.noarch", "product_id": "qemu-ipxe-1.0.0+-6.28.1.noarch" } }, { "category": "product_version", "name": "qemu-seabios-1.10.2-6.28.1.noarch", "product": { "name": "qemu-seabios-1.10.2-6.28.1.noarch", "product_id": "qemu-seabios-1.10.2-6.28.1.noarch" } }, { "category": "product_version", "name": "qemu-sgabios-8-6.28.1.noarch", "product": { "name": "qemu-sgabios-8-6.28.1.noarch", "product_id": "qemu-sgabios-8-6.28.1.noarch" } }, { "category": "product_version", "name": "qemu-vgabios-1.10.2-6.28.1.noarch", "product": { "name": "qemu-vgabios-1.10.2-6.28.1.noarch", "product_id": "qemu-vgabios-1.10.2-6.28.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "qemu-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-2.9.1-6.28.1.ppc64le", "product_id": "qemu-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-arm-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-arm-2.9.1-6.28.1.ppc64le", "product_id": "qemu-arm-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-curl-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-block-curl-2.9.1-6.28.1.ppc64le", "product_id": "qemu-block-curl-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-dmg-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-block-dmg-2.9.1-6.28.1.ppc64le", "product_id": "qemu-block-dmg-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "product_id": "qemu-block-iscsi-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-rbd-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-block-rbd-2.9.1-6.28.1.ppc64le", "product_id": "qemu-block-rbd-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-ssh-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-block-ssh-2.9.1-6.28.1.ppc64le", "product_id": "qemu-block-ssh-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-extra-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-extra-2.9.1-6.28.1.ppc64le", "product_id": "qemu-extra-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-guest-agent-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-guest-agent-2.9.1-6.28.1.ppc64le", "product_id": "qemu-guest-agent-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-lang-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-lang-2.9.1-6.28.1.ppc64le", "product_id": "qemu-lang-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-linux-user-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-linux-user-2.9.1-6.28.1.ppc64le", "product_id": "qemu-linux-user-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-ppc-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-ppc-2.9.1-6.28.1.ppc64le", "product_id": "qemu-ppc-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-s390-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-s390-2.9.1-6.28.1.ppc64le", "product_id": "qemu-s390-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-tools-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-tools-2.9.1-6.28.1.ppc64le", "product_id": "qemu-tools-2.9.1-6.28.1.ppc64le" } }, { "category": "product_version", "name": "qemu-x86-2.9.1-6.28.1.ppc64le", "product": { "name": "qemu-x86-2.9.1-6.28.1.ppc64le", "product_id": "qemu-x86-2.9.1-6.28.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "qemu-2.9.1-6.28.1.s390x", "product": { "name": "qemu-2.9.1-6.28.1.s390x", "product_id": "qemu-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-arm-2.9.1-6.28.1.s390x", "product": { "name": "qemu-arm-2.9.1-6.28.1.s390x", "product_id": "qemu-arm-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-block-curl-2.9.1-6.28.1.s390x", "product": { "name": "qemu-block-curl-2.9.1-6.28.1.s390x", "product_id": "qemu-block-curl-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-block-dmg-2.9.1-6.28.1.s390x", "product": { "name": "qemu-block-dmg-2.9.1-6.28.1.s390x", "product_id": "qemu-block-dmg-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.9.1-6.28.1.s390x", "product": { "name": "qemu-block-iscsi-2.9.1-6.28.1.s390x", "product_id": "qemu-block-iscsi-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-block-rbd-2.9.1-6.28.1.s390x", "product": { "name": "qemu-block-rbd-2.9.1-6.28.1.s390x", "product_id": "qemu-block-rbd-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-block-ssh-2.9.1-6.28.1.s390x", "product": { "name": "qemu-block-ssh-2.9.1-6.28.1.s390x", "product_id": "qemu-block-ssh-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-extra-2.9.1-6.28.1.s390x", "product": { "name": "qemu-extra-2.9.1-6.28.1.s390x", "product_id": "qemu-extra-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-guest-agent-2.9.1-6.28.1.s390x", "product": { "name": "qemu-guest-agent-2.9.1-6.28.1.s390x", "product_id": "qemu-guest-agent-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-kvm-2.9.1-6.28.1.s390x", "product": { "name": "qemu-kvm-2.9.1-6.28.1.s390x", "product_id": "qemu-kvm-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-lang-2.9.1-6.28.1.s390x", "product": { "name": "qemu-lang-2.9.1-6.28.1.s390x", "product_id": "qemu-lang-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-linux-user-2.9.1-6.28.1.s390x", "product": { "name": "qemu-linux-user-2.9.1-6.28.1.s390x", "product_id": "qemu-linux-user-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-ppc-2.9.1-6.28.1.s390x", "product": { "name": "qemu-ppc-2.9.1-6.28.1.s390x", "product_id": "qemu-ppc-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-s390-2.9.1-6.28.1.s390x", "product": { "name": "qemu-s390-2.9.1-6.28.1.s390x", "product_id": "qemu-s390-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-tools-2.9.1-6.28.1.s390x", "product": { "name": "qemu-tools-2.9.1-6.28.1.s390x", "product_id": "qemu-tools-2.9.1-6.28.1.s390x" } }, { "category": "product_version", "name": "qemu-x86-2.9.1-6.28.1.s390x", "product": { "name": "qemu-x86-2.9.1-6.28.1.s390x", "product_id": "qemu-x86-2.9.1-6.28.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "qemu-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-2.9.1-6.28.1.x86_64", "product_id": "qemu-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-arm-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-arm-2.9.1-6.28.1.x86_64", "product_id": "qemu-arm-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-curl-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-block-curl-2.9.1-6.28.1.x86_64", "product_id": "qemu-block-curl-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-dmg-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-block-dmg-2.9.1-6.28.1.x86_64", "product_id": "qemu-block-dmg-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-block-iscsi-2.9.1-6.28.1.x86_64", "product_id": "qemu-block-iscsi-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-rbd-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-block-rbd-2.9.1-6.28.1.x86_64", "product_id": "qemu-block-rbd-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-ssh-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-block-ssh-2.9.1-6.28.1.x86_64", "product_id": "qemu-block-ssh-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-extra-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-extra-2.9.1-6.28.1.x86_64", "product_id": "qemu-extra-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-guest-agent-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-guest-agent-2.9.1-6.28.1.x86_64", "product_id": "qemu-guest-agent-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-kvm-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-kvm-2.9.1-6.28.1.x86_64", "product_id": "qemu-kvm-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-lang-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-lang-2.9.1-6.28.1.x86_64", "product_id": "qemu-lang-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-linux-user-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-linux-user-2.9.1-6.28.1.x86_64", "product_id": "qemu-linux-user-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-ppc-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-ppc-2.9.1-6.28.1.x86_64", "product_id": "qemu-ppc-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-s390-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-s390-2.9.1-6.28.1.x86_64", "product_id": "qemu-s390-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-tools-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-tools-2.9.1-6.28.1.x86_64", "product_id": "qemu-tools-2.9.1-6.28.1.x86_64" } }, { "category": "product_version", "name": "qemu-x86-2.9.1-6.28.1.x86_64", "product": { "name": "qemu-x86-2.9.1-6.28.1.x86_64", "product_id": "qemu-x86-2.9.1-6.28.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Desktop 12 SP3", "product": { "name": "SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:sled:12:sp3" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP3", "product": { "name": "SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:sles:12:sp3" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12:sp3" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "qemu-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-block-curl-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ipxe-1.0.0+-6.28.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch" }, "product_reference": "qemu-ipxe-1.0.0+-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-kvm-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-seabios-1.10.2-6.28.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch" }, "product_reference": "qemu-seabios-1.10.2-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-sgabios-8-6.28.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch" }, "product_reference": "qemu-sgabios-8-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-tools-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-vgabios-1.10.2-6.28.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch" }, "product_reference": "qemu-vgabios-1.10.2-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-x86-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-x86-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-arm-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-arm-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-block-curl-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-block-curl-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-block-curl-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-block-curl-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-block-iscsi-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-block-iscsi-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-block-iscsi-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-block-rbd-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-block-rbd-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-block-ssh-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-block-ssh-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-block-ssh-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-block-ssh-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-guest-agent-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-guest-agent-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-guest-agent-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-guest-agent-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ipxe-1.0.0+-6.28.1.noarch as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch" }, "product_reference": "qemu-ipxe-1.0.0+-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-kvm-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-kvm-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-lang-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-lang-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-lang-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-lang-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ppc-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-ppc-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-s390-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-s390-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-seabios-1.10.2-6.28.1.noarch as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch" }, "product_reference": "qemu-seabios-1.10.2-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-sgabios-8-6.28.1.noarch as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch" }, "product_reference": "qemu-sgabios-8-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-tools-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-tools-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-tools-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-tools-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-vgabios-1.10.2-6.28.1.noarch as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch" }, "product_reference": "qemu-vgabios-1.10.2-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-x86-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-x86-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-arm-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-arm-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-block-curl-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-block-curl-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-block-curl-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-block-curl-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-block-iscsi-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-block-iscsi-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-block-iscsi-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-block-rbd-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-block-rbd-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-block-ssh-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-block-ssh-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-block-ssh-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-block-ssh-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-guest-agent-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-guest-agent-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-guest-agent-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-guest-agent-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ipxe-1.0.0+-6.28.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch" }, "product_reference": "qemu-ipxe-1.0.0+-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-kvm-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-kvm-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-lang-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-lang-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-lang-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-lang-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ppc-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-ppc-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-s390-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-s390-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-seabios-1.10.2-6.28.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch" }, "product_reference": "qemu-seabios-1.10.2-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-sgabios-8-6.28.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch" }, "product_reference": "qemu-sgabios-8-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.9.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64" }, "product_reference": "qemu-tools-2.9.1-6.28.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.9.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le" }, "product_reference": "qemu-tools-2.9.1-6.28.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.9.1-6.28.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x" }, "product_reference": "qemu-tools-2.9.1-6.28.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-tools-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-vgabios-1.10.2-6.28.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch" }, "product_reference": "qemu-vgabios-1.10.2-6.28.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-x86-2.9.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" }, "product_reference": "qemu-x86-2.9.1-6.28.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" } ] }, "vulnerabilities": [ { "cve": "CVE-2017-13672", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-13672" } ], "notes": [ { "category": "general", "text": "QEMU (aka Quick Emulator), when built with the VGA display emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors involving display update.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-13672", "url": "https://www.suse.com/security/cve/CVE-2017-13672" }, { "category": "external", "summary": "SUSE Bug 1056334 for CVE-2017-13672", "url": "https://bugzilla.suse.com/1056334" }, { "category": "external", "summary": "SUSE Bug 1056336 for CVE-2017-13672", "url": "https://bugzilla.suse.com/1056336" }, { "category": "external", "summary": "SUSE Bug 1084604 for CVE-2017-13672", "url": "https://bugzilla.suse.com/1084604" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 3, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-11T17:34:20Z", "details": "low" } ], "title": "CVE-2017-13672" }, { "cve": "CVE-2017-13673", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-13673" } ], "notes": [ { "category": "general", "text": "The vga display update in mis-calculated the region for the dirty bitmap snapshot in case split screen mode is used causing a denial of service (assertion failure) in the cpu_physical_memory_snapshot_get_dirty function.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-13673", "url": "https://www.suse.com/security/cve/CVE-2017-13673" }, { "category": "external", "summary": "SUSE Bug 1056386 for CVE-2017-13673", "url": "https://bugzilla.suse.com/1056386" }, { "category": "external", "summary": "SUSE Bug 1056387 for CVE-2017-13673", "url": "https://bugzilla.suse.com/1056387" }, { "category": "external", "summary": "SUSE Bug 1084604 for CVE-2017-13673", "url": "https://bugzilla.suse.com/1084604" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 3, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-11T17:34:20Z", "details": "low" } ], "title": "CVE-2017-13673" }, { "cve": "CVE-2018-16872", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-16872" } ], "notes": [ { "category": "general", "text": "A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn\u0027t consider that the underlying filesystem may have changed since the time lstat(2) was called in usb_mtp_object_alloc, a classical TOCTTOU problem. An attacker with write access to the host filesystem shared with a guest can use this property to navigate the host filesystem in the context of the QEMU process and read any file the QEMU process has access to. Access to the filesystem may be local or via a network share protocol such as CIFS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-16872", "url": "https://www.suse.com/security/cve/CVE-2018-16872" }, { "category": "external", "summary": "SUSE Bug 1119493 for CVE-2018-16872", "url": "https://bugzilla.suse.com/1119493" }, { "category": "external", "summary": "SUSE Bug 1119494 for CVE-2018-16872", "url": "https://bugzilla.suse.com/1119494" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-11T17:34:20Z", "details": "moderate" } ], "title": "CVE-2018-16872" }, { "cve": "CVE-2018-18954", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-18954" } ], "notes": [ { "category": "general", "text": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-18954", "url": "https://www.suse.com/security/cve/CVE-2018-18954" }, { "category": "external", "summary": "SUSE Bug 1114957 for CVE-2018-18954", "url": "https://bugzilla.suse.com/1114957" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-11T17:34:20Z", "details": "important" } ], "title": "CVE-2018-18954" }, { "cve": "CVE-2018-19364", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-19364" } ], "notes": [ { "category": "general", "text": "hw/9pfs/cofile.c and hw/9pfs/9p.c in QEMU can modify an fid path while it is being accessed by a second thread, leading to (for example) a use-after-free outcome.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-19364", "url": "https://www.suse.com/security/cve/CVE-2018-19364" }, { "category": "external", "summary": "SUSE Bug 1116717 for CVE-2018-19364", "url": "https://bugzilla.suse.com/1116717" }, { "category": "external", "summary": "SUSE Bug 1116726 for CVE-2018-19364", "url": "https://bugzilla.suse.com/1116726" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-11T17:34:20Z", "details": "moderate" } ], "title": "CVE-2018-19364" }, { "cve": "CVE-2018-19489", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-19489" } ], "notes": [ { "category": "general", "text": "v9fs_wstat in hw/9pfs/9p.c in QEMU allows guest OS users to cause a denial of service (crash) because of a race condition during file renaming.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-19489", "url": "https://www.suse.com/security/cve/CVE-2018-19489" }, { "category": "external", "summary": "SUSE Bug 1117275 for CVE-2018-19489", "url": "https://bugzilla.suse.com/1117275" }, { "category": "external", "summary": "SUSE Bug 1117279 for CVE-2018-19489", "url": "https://bugzilla.suse.com/1117279" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 2.8, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-11T17:34:20Z", "details": "low" } ], "title": "CVE-2018-19489" }, { "cve": "CVE-2018-7858", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-7858" } ], "notes": [ { "category": "general", "text": "Quick Emulator (aka QEMU), when built with the Cirrus CLGD 54xx VGA Emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds access and QEMU process crash) by leveraging incorrect region calculation when updating VGA display.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-7858", "url": "https://www.suse.com/security/cve/CVE-2018-7858" }, { "category": "external", "summary": "SUSE Bug 1084604 for CVE-2018-7858", "url": "https://bugzilla.suse.com/1084604" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-11T17:34:20Z", "details": "moderate" } ], "title": "CVE-2018-7858" }, { "cve": "CVE-2019-6778", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2019-6778" } ], "notes": [ { "category": "general", "text": "In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2019-6778", "url": "https://www.suse.com/security/cve/CVE-2019-6778" }, { "category": "external", "summary": "SUSE Bug 1123156 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1123156" }, { "category": "external", "summary": "SUSE Bug 1123157 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1123157" }, { "category": "external", "summary": "SUSE Bug 1178658 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1178658" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Desktop 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-arm-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-curl-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-iscsi-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-rbd-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-block-ssh-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-guest-agent-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ipxe-1.0.0+-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-kvm-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-lang-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-ppc-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-s390-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-seabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-sgabios-8-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-tools-2.9.1-6.28.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-vgabios-1.10.2-6.28.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:qemu-x86-2.9.1-6.28.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-03-11T17:34:20Z", "details": "important" } ], "title": "CVE-2019-6778" } ] }
suse-su-2019:0435-1
Vulnerability from csaf_suse
Published
2019-02-19 12:12
Modified
2019-02-19 12:12
Summary
Security update for qemu
Notes
Title of the patch
Security update for qemu
Description of the patch
This update for qemu fixes the following issues:
Security issues fixed:
- CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156).
- CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493).
- CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275).
- CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717).
- CVE-2018-18954: Fixed a denial of service vulnerability related to PowerPC PowerNV memory operations (bsc#1114957).
Non-security issues fixed:
- Improved disk performance for qemu on xen (bsc#1100408).
- Fixed xen offline migration (bsc#1079730, bsc#1101982, bsc#1063993).
- Fixed pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600).
- Use /bin/bash to echo value into sys fs for ksm control (bsc#1112646).
- Return specification exception for unimplemented diag 308 subcodes rather than a hardware error (bsc#1123179).
Patchnames
SUSE-2019-435,SUSE-SLE-DESKTOP-12-SP4-2019-435,SUSE-SLE-SERVER-12-SP4-2019-435
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for qemu", "title": "Title of the patch" }, { "category": "description", "text": "This update for qemu fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156).\n- CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493).\n- CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275).\n- CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717).\n- CVE-2018-18954: Fixed a denial of service vulnerability related to PowerPC PowerNV memory operations (bsc#1114957).\n\nNon-security issues fixed:\n\n- Improved disk performance for qemu on xen (bsc#1100408).\n- Fixed xen offline migration (bsc#1079730, bsc#1101982, bsc#1063993).\n- Fixed pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600).\n- Use /bin/bash to echo value into sys fs for ksm control (bsc#1112646).\n- Return specification exception for unimplemented diag 308 subcodes rather than a hardware error (bsc#1123179).\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-2019-435,SUSE-SLE-DESKTOP-12-SP4-2019-435,SUSE-SLE-SERVER-12-SP4-2019-435", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0435-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2019:0435-1", "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190435-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2019:0435-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-February/005136.html" }, { "category": "self", "summary": "SUSE Bug 1063993", "url": "https://bugzilla.suse.com/1063993" }, { "category": "self", "summary": "SUSE Bug 1079730", "url": "https://bugzilla.suse.com/1079730" }, { "category": "self", "summary": "SUSE Bug 1100408", "url": "https://bugzilla.suse.com/1100408" }, { "category": "self", "summary": "SUSE Bug 1101982", "url": "https://bugzilla.suse.com/1101982" }, { "category": "self", "summary": "SUSE Bug 1112646", "url": "https://bugzilla.suse.com/1112646" }, { "category": "self", "summary": "SUSE Bug 1114957", "url": "https://bugzilla.suse.com/1114957" }, { "category": "self", "summary": "SUSE Bug 1116717", "url": "https://bugzilla.suse.com/1116717" }, { "category": "self", "summary": "SUSE Bug 1117275", "url": "https://bugzilla.suse.com/1117275" }, { "category": "self", "summary": "SUSE Bug 1119493", "url": "https://bugzilla.suse.com/1119493" }, { "category": "self", "summary": "SUSE Bug 1121600", "url": "https://bugzilla.suse.com/1121600" }, { "category": "self", "summary": "SUSE Bug 1123156", "url": "https://bugzilla.suse.com/1123156" }, { "category": "self", "summary": "SUSE Bug 1123179", "url": "https://bugzilla.suse.com/1123179" }, { "category": "self", "summary": "SUSE CVE CVE-2018-16872 page", "url": "https://www.suse.com/security/cve/CVE-2018-16872/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-18954 page", "url": "https://www.suse.com/security/cve/CVE-2018-18954/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-19364 page", "url": "https://www.suse.com/security/cve/CVE-2018-19364/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-19489 page", "url": "https://www.suse.com/security/cve/CVE-2018-19489/" }, { "category": "self", "summary": "SUSE CVE CVE-2019-6778 page", "url": "https://www.suse.com/security/cve/CVE-2019-6778/" } ], "title": "Security update for qemu", "tracking": { "current_release_date": "2019-02-19T12:12:38Z", "generator": { "date": "2019-02-19T12:12:38Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2019:0435-1", "initial_release_date": "2019-02-19T12:12:38Z", "revision_history": [ { "date": "2019-02-19T12:12:38Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-2.11.2-5.8.1.aarch64", "product_id": "qemu-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-arm-2.11.2-5.8.1.aarch64", "product_id": "qemu-arm-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-block-curl-2.11.2-5.8.1.aarch64", "product_id": "qemu-block-curl-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-block-dmg-2.11.2-5.8.1.aarch64", "product_id": "qemu-block-dmg-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-block-iscsi-2.11.2-5.8.1.aarch64", "product_id": "qemu-block-iscsi-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-rbd-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-block-rbd-2.11.2-5.8.1.aarch64", "product_id": "qemu-block-rbd-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-block-ssh-2.11.2-5.8.1.aarch64", "product_id": "qemu-block-ssh-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-extra-2.11.2-5.8.1.aarch64", "product_id": "qemu-extra-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-guest-agent-2.11.2-5.8.1.aarch64", "product_id": "qemu-guest-agent-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-lang-2.11.2-5.8.1.aarch64", "product_id": "qemu-lang-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-linux-user-2.11.2-5.8.1.aarch64", "product_id": "qemu-linux-user-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-ppc-2.11.2-5.8.1.aarch64", "product_id": "qemu-ppc-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-s390-2.11.2-5.8.1.aarch64", "product_id": "qemu-s390-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-tools-2.11.2-5.8.1.aarch64", "product_id": "qemu-tools-2.11.2-5.8.1.aarch64" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-5.8.1.aarch64", "product": { "name": "qemu-x86-2.11.2-5.8.1.aarch64", "product_id": "qemu-x86-2.11.2-5.8.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-5.8.1.i586", "product": { "name": "qemu-2.11.2-5.8.1.i586", "product_id": "qemu-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-5.8.1.i586", "product": { "name": "qemu-arm-2.11.2-5.8.1.i586", "product_id": "qemu-arm-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-5.8.1.i586", "product": { "name": "qemu-block-curl-2.11.2-5.8.1.i586", "product_id": "qemu-block-curl-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-5.8.1.i586", "product": { "name": "qemu-block-dmg-2.11.2-5.8.1.i586", "product_id": "qemu-block-dmg-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-5.8.1.i586", "product": { "name": "qemu-block-iscsi-2.11.2-5.8.1.i586", "product_id": "qemu-block-iscsi-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-5.8.1.i586", "product": { "name": "qemu-block-ssh-2.11.2-5.8.1.i586", "product_id": "qemu-block-ssh-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-5.8.1.i586", "product": { "name": "qemu-extra-2.11.2-5.8.1.i586", "product_id": "qemu-extra-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-5.8.1.i586", "product": { "name": "qemu-guest-agent-2.11.2-5.8.1.i586", "product_id": "qemu-guest-agent-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-kvm-2.11.2-5.8.1.i586", "product": { "name": "qemu-kvm-2.11.2-5.8.1.i586", "product_id": "qemu-kvm-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-5.8.1.i586", "product": { "name": "qemu-lang-2.11.2-5.8.1.i586", "product_id": "qemu-lang-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-5.8.1.i586", "product": { "name": "qemu-linux-user-2.11.2-5.8.1.i586", "product_id": "qemu-linux-user-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-5.8.1.i586", "product": { "name": "qemu-ppc-2.11.2-5.8.1.i586", "product_id": "qemu-ppc-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-5.8.1.i586", "product": { "name": "qemu-s390-2.11.2-5.8.1.i586", "product_id": "qemu-s390-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-5.8.1.i586", "product": { "name": "qemu-tools-2.11.2-5.8.1.i586", "product_id": "qemu-tools-2.11.2-5.8.1.i586" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-5.8.1.i586", "product": { "name": "qemu-x86-2.11.2-5.8.1.i586", "product_id": "qemu-x86-2.11.2-5.8.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "qemu-ipxe-1.0.0+-5.8.1.noarch", "product": { "name": "qemu-ipxe-1.0.0+-5.8.1.noarch", "product_id": "qemu-ipxe-1.0.0+-5.8.1.noarch" } }, { "category": "product_version", "name": "qemu-seabios-1.11.0-5.8.1.noarch", "product": { "name": "qemu-seabios-1.11.0-5.8.1.noarch", "product_id": "qemu-seabios-1.11.0-5.8.1.noarch" } }, { "category": "product_version", "name": "qemu-sgabios-8-5.8.1.noarch", "product": { "name": "qemu-sgabios-8-5.8.1.noarch", "product_id": "qemu-sgabios-8-5.8.1.noarch" } }, { "category": "product_version", "name": "qemu-vgabios-1.11.0-5.8.1.noarch", "product": { "name": "qemu-vgabios-1.11.0-5.8.1.noarch", "product_id": "qemu-vgabios-1.11.0-5.8.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-2.11.2-5.8.1.ppc64le", "product_id": "qemu-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-arm-2.11.2-5.8.1.ppc64le", "product_id": "qemu-arm-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-block-curl-2.11.2-5.8.1.ppc64le", "product_id": "qemu-block-curl-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-block-dmg-2.11.2-5.8.1.ppc64le", "product_id": "qemu-block-dmg-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "product_id": "qemu-block-iscsi-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-rbd-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-block-rbd-2.11.2-5.8.1.ppc64le", "product_id": "qemu-block-rbd-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-block-ssh-2.11.2-5.8.1.ppc64le", "product_id": "qemu-block-ssh-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-extra-2.11.2-5.8.1.ppc64le", "product_id": "qemu-extra-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-guest-agent-2.11.2-5.8.1.ppc64le", "product_id": "qemu-guest-agent-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-lang-2.11.2-5.8.1.ppc64le", "product_id": "qemu-lang-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-linux-user-2.11.2-5.8.1.ppc64le", "product_id": "qemu-linux-user-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-ppc-2.11.2-5.8.1.ppc64le", "product_id": "qemu-ppc-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-s390-2.11.2-5.8.1.ppc64le", "product_id": "qemu-s390-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-tools-2.11.2-5.8.1.ppc64le", "product_id": "qemu-tools-2.11.2-5.8.1.ppc64le" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-5.8.1.ppc64le", "product": { "name": "qemu-x86-2.11.2-5.8.1.ppc64le", "product_id": "qemu-x86-2.11.2-5.8.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-5.8.1.s390x", "product": { "name": "qemu-2.11.2-5.8.1.s390x", "product_id": "qemu-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-5.8.1.s390x", "product": { "name": "qemu-arm-2.11.2-5.8.1.s390x", "product_id": "qemu-arm-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-5.8.1.s390x", "product": { "name": "qemu-block-curl-2.11.2-5.8.1.s390x", "product_id": "qemu-block-curl-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-5.8.1.s390x", "product": { "name": "qemu-block-dmg-2.11.2-5.8.1.s390x", "product_id": "qemu-block-dmg-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-5.8.1.s390x", "product": { "name": "qemu-block-iscsi-2.11.2-5.8.1.s390x", "product_id": "qemu-block-iscsi-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-block-rbd-2.11.2-5.8.1.s390x", "product": { "name": "qemu-block-rbd-2.11.2-5.8.1.s390x", "product_id": "qemu-block-rbd-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-5.8.1.s390x", "product": { "name": "qemu-block-ssh-2.11.2-5.8.1.s390x", "product_id": "qemu-block-ssh-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-5.8.1.s390x", "product": { "name": "qemu-extra-2.11.2-5.8.1.s390x", "product_id": "qemu-extra-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-5.8.1.s390x", "product": { "name": "qemu-guest-agent-2.11.2-5.8.1.s390x", "product_id": "qemu-guest-agent-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-kvm-2.11.2-5.8.1.s390x", "product": { "name": "qemu-kvm-2.11.2-5.8.1.s390x", "product_id": "qemu-kvm-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-5.8.1.s390x", "product": { "name": "qemu-lang-2.11.2-5.8.1.s390x", "product_id": "qemu-lang-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-5.8.1.s390x", "product": { "name": "qemu-linux-user-2.11.2-5.8.1.s390x", "product_id": "qemu-linux-user-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-5.8.1.s390x", "product": { "name": "qemu-ppc-2.11.2-5.8.1.s390x", "product_id": "qemu-ppc-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-5.8.1.s390x", "product": { "name": "qemu-s390-2.11.2-5.8.1.s390x", "product_id": "qemu-s390-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-5.8.1.s390x", "product": { "name": "qemu-tools-2.11.2-5.8.1.s390x", "product_id": "qemu-tools-2.11.2-5.8.1.s390x" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-5.8.1.s390x", "product": { "name": "qemu-x86-2.11.2-5.8.1.s390x", "product_id": "qemu-x86-2.11.2-5.8.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-2.11.2-5.8.1.x86_64", "product_id": "qemu-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-arm-2.11.2-5.8.1.x86_64", "product_id": "qemu-arm-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-block-curl-2.11.2-5.8.1.x86_64", "product_id": "qemu-block-curl-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-block-dmg-2.11.2-5.8.1.x86_64", "product_id": "qemu-block-dmg-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-block-iscsi-2.11.2-5.8.1.x86_64", "product_id": "qemu-block-iscsi-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-rbd-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-block-rbd-2.11.2-5.8.1.x86_64", "product_id": "qemu-block-rbd-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-block-ssh-2.11.2-5.8.1.x86_64", "product_id": "qemu-block-ssh-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-extra-2.11.2-5.8.1.x86_64", "product_id": "qemu-extra-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-guest-agent-2.11.2-5.8.1.x86_64", "product_id": "qemu-guest-agent-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-kvm-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-kvm-2.11.2-5.8.1.x86_64", "product_id": "qemu-kvm-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-lang-2.11.2-5.8.1.x86_64", "product_id": "qemu-lang-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-linux-user-2.11.2-5.8.1.x86_64", "product_id": "qemu-linux-user-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-ppc-2.11.2-5.8.1.x86_64", "product_id": "qemu-ppc-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-s390-2.11.2-5.8.1.x86_64", "product_id": "qemu-s390-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-tools-2.11.2-5.8.1.x86_64", "product_id": "qemu-tools-2.11.2-5.8.1.x86_64" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-5.8.1.x86_64", "product": { "name": "qemu-x86-2.11.2-5.8.1.x86_64", "product_id": "qemu-x86-2.11.2-5.8.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Desktop 12 SP4", "product": { "name": "SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4", "product_identification_helper": { "cpe": "cpe:/o:suse:sled:12:sp4" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP4", "product": { "name": "SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4", "product_identification_helper": { "cpe": "cpe:/o:suse:sles:12:sp4" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12:sp4" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-block-curl-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ipxe-1.0.0+-5.8.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch" }, "product_reference": "qemu-ipxe-1.0.0+-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-kvm-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-seabios-1.11.0-5.8.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch" }, "product_reference": "qemu-seabios-1.11.0-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-sgabios-8-5.8.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch" }, "product_reference": "qemu-sgabios-8-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-tools-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-vgabios-1.11.0-5.8.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch" }, "product_reference": "qemu-vgabios-1.11.0-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-x86-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP4", "product_id": "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-x86-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-arm-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-arm-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-block-curl-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-block-curl-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-block-curl-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-block-curl-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-block-iscsi-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-block-iscsi-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-block-iscsi-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-block-rbd-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-block-rbd-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-block-ssh-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-block-ssh-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-block-ssh-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-block-ssh-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-guest-agent-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-guest-agent-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-guest-agent-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-guest-agent-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ipxe-1.0.0+-5.8.1.noarch as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch" }, "product_reference": "qemu-ipxe-1.0.0+-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-kvm-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-kvm-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-lang-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-lang-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-lang-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-lang-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ppc-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-ppc-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-s390-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-s390-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-seabios-1.11.0-5.8.1.noarch as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch" }, "product_reference": "qemu-seabios-1.11.0-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-sgabios-8-5.8.1.noarch as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch" }, "product_reference": "qemu-sgabios-8-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-tools-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-tools-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-tools-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-tools-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-vgabios-1.11.0-5.8.1.noarch as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch" }, "product_reference": "qemu-vgabios-1.11.0-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-x86-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", "product_id": "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-x86-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-arm-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-arm-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-block-curl-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-block-curl-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-block-curl-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-block-curl-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-block-iscsi-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-block-iscsi-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-block-iscsi-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-block-rbd-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-block-rbd-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-block-ssh-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-block-ssh-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-block-ssh-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-block-ssh-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-guest-agent-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-guest-agent-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-guest-agent-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-guest-agent-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ipxe-1.0.0+-5.8.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch" }, "product_reference": "qemu-ipxe-1.0.0+-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-kvm-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-kvm-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-lang-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-lang-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-lang-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-lang-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ppc-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-ppc-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-s390-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-s390-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-seabios-1.11.0-5.8.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch" }, "product_reference": "qemu-seabios-1.11.0-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-sgabios-8-5.8.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch" }, "product_reference": "qemu-sgabios-8-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-5.8.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64" }, "product_reference": "qemu-tools-2.11.2-5.8.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-5.8.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le" }, "product_reference": "qemu-tools-2.11.2-5.8.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-5.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x" }, "product_reference": "qemu-tools-2.11.2-5.8.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-tools-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-vgabios-1.11.0-5.8.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch" }, "product_reference": "qemu-vgabios-1.11.0-5.8.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-x86-2.11.2-5.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" }, "product_reference": "qemu-x86-2.11.2-5.8.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" } ] }, "vulnerabilities": [ { "cve": "CVE-2018-16872", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-16872" } ], "notes": [ { "category": "general", "text": "A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn\u0027t consider that the underlying filesystem may have changed since the time lstat(2) was called in usb_mtp_object_alloc, a classical TOCTTOU problem. An attacker with write access to the host filesystem shared with a guest can use this property to navigate the host filesystem in the context of the QEMU process and read any file the QEMU process has access to. Access to the filesystem may be local or via a network share protocol such as CIFS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-16872", "url": "https://www.suse.com/security/cve/CVE-2018-16872" }, { "category": "external", "summary": "SUSE Bug 1119493 for CVE-2018-16872", "url": "https://bugzilla.suse.com/1119493" }, { "category": "external", "summary": "SUSE Bug 1119494 for CVE-2018-16872", "url": "https://bugzilla.suse.com/1119494" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-19T12:12:38Z", "details": "moderate" } ], "title": "CVE-2018-16872" }, { "cve": "CVE-2018-18954", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-18954" } ], "notes": [ { "category": "general", "text": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-18954", "url": "https://www.suse.com/security/cve/CVE-2018-18954" }, { "category": "external", "summary": "SUSE Bug 1114957 for CVE-2018-18954", "url": "https://bugzilla.suse.com/1114957" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-19T12:12:38Z", "details": "important" } ], "title": "CVE-2018-18954" }, { "cve": "CVE-2018-19364", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-19364" } ], "notes": [ { "category": "general", "text": "hw/9pfs/cofile.c and hw/9pfs/9p.c in QEMU can modify an fid path while it is being accessed by a second thread, leading to (for example) a use-after-free outcome.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-19364", "url": "https://www.suse.com/security/cve/CVE-2018-19364" }, { "category": "external", "summary": "SUSE Bug 1116717 for CVE-2018-19364", "url": "https://bugzilla.suse.com/1116717" }, { "category": "external", "summary": "SUSE Bug 1116726 for CVE-2018-19364", "url": "https://bugzilla.suse.com/1116726" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-19T12:12:38Z", "details": "moderate" } ], "title": "CVE-2018-19364" }, { "cve": "CVE-2018-19489", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-19489" } ], "notes": [ { "category": "general", "text": "v9fs_wstat in hw/9pfs/9p.c in QEMU allows guest OS users to cause a denial of service (crash) because of a race condition during file renaming.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-19489", "url": "https://www.suse.com/security/cve/CVE-2018-19489" }, { "category": "external", "summary": "SUSE Bug 1117275 for CVE-2018-19489", "url": "https://bugzilla.suse.com/1117275" }, { "category": "external", "summary": "SUSE Bug 1117279 for CVE-2018-19489", "url": "https://bugzilla.suse.com/1117279" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 2.8, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-19T12:12:38Z", "details": "low" } ], "title": "CVE-2018-19489" }, { "cve": "CVE-2019-6778", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2019-6778" } ], "notes": [ { "category": "general", "text": "In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2019-6778", "url": "https://www.suse.com/security/cve/CVE-2019-6778" }, { "category": "external", "summary": "SUSE Bug 1123156 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1123156" }, { "category": "external", "summary": "SUSE Bug 1123157 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1123157" }, { "category": "external", "summary": "SUSE Bug 1178658 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1178658" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Desktop 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Desktop 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-arm-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-curl-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-iscsi-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-rbd-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-block-ssh-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-guest-agent-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ipxe-1.0.0+-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-kvm-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-lang-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-ppc-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-s390-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-seabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-sgabios-8-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-tools-2.11.2-5.8.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-vgabios-1.11.0-5.8.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:qemu-x86-2.11.2-5.8.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-19T12:12:38Z", "details": "important" } ], "title": "CVE-2019-6778" } ] }
suse-su-2019:0423-1
Vulnerability from csaf_suse
Published
2019-02-18 15:26
Modified
2019-02-18 15:26
Summary
Security update for qemu
Notes
Title of the patch
Security update for qemu
Description of the patch
This update for qemu fixes the following issues:
Security issues fixed:
- CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156).
- CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493).
- CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275).
- CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717).
- CVE-2018-18954: Fixed a denial of service vulnerability related to PowerPC PowerNV memory operations (bsc#1114957).
Non-security issues fixed:
- Improved disk performance for qemu on xen (bsc#1100408).
- Fixed xen offline migration (bsc#1079730, bsc#1101982, bsc#1063993).
- Fixed pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600).
- Use /bin/bash to echo value into sys fs for ksm control (bsc#1112646).
- Return specification exception for unimplemented diag 308 subcodes rather than a hardware error (bsc#1123179).
Patchnames
SUSE-2019-423,SUSE-SLE-Module-Basesystem-15-2019-423,SUSE-SLE-Module-Development-Tools-OBS-15-2019-423,SUSE-SLE-Module-Server-Applications-15-2019-423
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for qemu", "title": "Title of the patch" }, { "category": "description", "text": "This update for qemu fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156).\n- CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493).\n- CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275).\n- CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717).\n- CVE-2018-18954: Fixed a denial of service vulnerability related to PowerPC PowerNV memory operations (bsc#1114957).\n\nNon-security issues fixed:\n\n- Improved disk performance for qemu on xen (bsc#1100408).\n- Fixed xen offline migration (bsc#1079730, bsc#1101982, bsc#1063993).\n- Fixed pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600).\n- Use /bin/bash to echo value into sys fs for ksm control (bsc#1112646).\n- Return specification exception for unimplemented diag 308 subcodes rather than a hardware error (bsc#1123179).\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-2019-423,SUSE-SLE-Module-Basesystem-15-2019-423,SUSE-SLE-Module-Development-Tools-OBS-15-2019-423,SUSE-SLE-Module-Server-Applications-15-2019-423", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0423-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2019:0423-1", "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190423-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2019:0423-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-February/005132.html" }, { "category": "self", "summary": "SUSE Bug 1063993", "url": "https://bugzilla.suse.com/1063993" }, { "category": "self", "summary": "SUSE Bug 1079730", "url": "https://bugzilla.suse.com/1079730" }, { "category": "self", "summary": "SUSE Bug 1100408", "url": "https://bugzilla.suse.com/1100408" }, { "category": "self", "summary": "SUSE Bug 1101982", "url": "https://bugzilla.suse.com/1101982" }, { "category": "self", "summary": "SUSE Bug 1112646", "url": "https://bugzilla.suse.com/1112646" }, { "category": "self", "summary": "SUSE Bug 1114957", "url": "https://bugzilla.suse.com/1114957" }, { "category": "self", "summary": "SUSE Bug 1116717", "url": "https://bugzilla.suse.com/1116717" }, { "category": "self", "summary": "SUSE Bug 1117275", "url": "https://bugzilla.suse.com/1117275" }, { "category": "self", "summary": "SUSE Bug 1119493", "url": "https://bugzilla.suse.com/1119493" }, { "category": "self", "summary": "SUSE Bug 1121600", "url": "https://bugzilla.suse.com/1121600" }, { "category": "self", "summary": "SUSE Bug 1123156", "url": "https://bugzilla.suse.com/1123156" }, { "category": "self", "summary": "SUSE Bug 1123179", "url": "https://bugzilla.suse.com/1123179" }, { "category": "self", "summary": "SUSE CVE CVE-2018-16872 page", "url": "https://www.suse.com/security/cve/CVE-2018-16872/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-18954 page", "url": "https://www.suse.com/security/cve/CVE-2018-18954/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-19364 page", "url": "https://www.suse.com/security/cve/CVE-2018-19364/" }, { "category": "self", "summary": "SUSE CVE CVE-2018-19489 page", "url": "https://www.suse.com/security/cve/CVE-2018-19489/" }, { "category": "self", "summary": "SUSE CVE CVE-2019-6778 page", "url": "https://www.suse.com/security/cve/CVE-2019-6778/" } ], "title": "Security update for qemu", "tracking": { "current_release_date": "2019-02-18T15:26:50Z", "generator": { "date": "2019-02-18T15:26:50Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2019:0423-1", "initial_release_date": "2019-02-18T15:26:50Z", "revision_history": [ { "date": "2019-02-18T15:26:50Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-2.11.2-9.20.1.aarch64", "product_id": "qemu-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-arm-2.11.2-9.20.1.aarch64", "product_id": "qemu-arm-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-block-curl-2.11.2-9.20.1.aarch64", "product_id": "qemu-block-curl-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-block-dmg-2.11.2-9.20.1.aarch64", "product_id": "qemu-block-dmg-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-block-iscsi-2.11.2-9.20.1.aarch64", "product_id": "qemu-block-iscsi-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-rbd-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-block-rbd-2.11.2-9.20.1.aarch64", "product_id": "qemu-block-rbd-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-block-ssh-2.11.2-9.20.1.aarch64", "product_id": "qemu-block-ssh-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-extra-2.11.2-9.20.1.aarch64", "product_id": "qemu-extra-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-guest-agent-2.11.2-9.20.1.aarch64", "product_id": "qemu-guest-agent-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-lang-2.11.2-9.20.1.aarch64", "product_id": "qemu-lang-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-linux-user-2.11.2-9.20.1.aarch64", "product_id": "qemu-linux-user-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-ppc-2.11.2-9.20.1.aarch64", "product_id": "qemu-ppc-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-s390-2.11.2-9.20.1.aarch64", "product_id": "qemu-s390-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-testsuite-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-testsuite-2.11.2-9.20.1.aarch64", "product_id": "qemu-testsuite-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-tools-2.11.2-9.20.1.aarch64", "product_id": "qemu-tools-2.11.2-9.20.1.aarch64" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-9.20.1.aarch64", "product": { "name": "qemu-x86-2.11.2-9.20.1.aarch64", "product_id": "qemu-x86-2.11.2-9.20.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-9.20.1.i586", "product": { "name": "qemu-2.11.2-9.20.1.i586", "product_id": "qemu-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-9.20.1.i586", "product": { "name": "qemu-arm-2.11.2-9.20.1.i586", "product_id": "qemu-arm-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-9.20.1.i586", "product": { "name": "qemu-block-curl-2.11.2-9.20.1.i586", "product_id": "qemu-block-curl-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-9.20.1.i586", "product": { "name": "qemu-block-dmg-2.11.2-9.20.1.i586", "product_id": "qemu-block-dmg-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-9.20.1.i586", "product": { "name": "qemu-block-iscsi-2.11.2-9.20.1.i586", "product_id": "qemu-block-iscsi-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-9.20.1.i586", "product": { "name": "qemu-block-ssh-2.11.2-9.20.1.i586", "product_id": "qemu-block-ssh-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-9.20.1.i586", "product": { "name": "qemu-extra-2.11.2-9.20.1.i586", "product_id": "qemu-extra-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-9.20.1.i586", "product": { "name": "qemu-guest-agent-2.11.2-9.20.1.i586", "product_id": "qemu-guest-agent-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-kvm-2.11.2-9.20.1.i586", "product": { "name": "qemu-kvm-2.11.2-9.20.1.i586", "product_id": "qemu-kvm-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-9.20.1.i586", "product": { "name": "qemu-lang-2.11.2-9.20.1.i586", "product_id": "qemu-lang-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-9.20.1.i586", "product": { "name": "qemu-linux-user-2.11.2-9.20.1.i586", "product_id": "qemu-linux-user-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-9.20.1.i586", "product": { "name": "qemu-ppc-2.11.2-9.20.1.i586", "product_id": "qemu-ppc-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-9.20.1.i586", "product": { "name": "qemu-s390-2.11.2-9.20.1.i586", "product_id": "qemu-s390-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-testsuite-2.11.2-9.20.1.i586", "product": { "name": "qemu-testsuite-2.11.2-9.20.1.i586", "product_id": "qemu-testsuite-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-9.20.1.i586", "product": { "name": "qemu-tools-2.11.2-9.20.1.i586", "product_id": "qemu-tools-2.11.2-9.20.1.i586" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-9.20.1.i586", "product": { "name": "qemu-x86-2.11.2-9.20.1.i586", "product_id": "qemu-x86-2.11.2-9.20.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "qemu-ipxe-1.0.0+-9.20.1.noarch", "product": { "name": "qemu-ipxe-1.0.0+-9.20.1.noarch", "product_id": "qemu-ipxe-1.0.0+-9.20.1.noarch" } }, { "category": "product_version", "name": "qemu-seabios-1.11.0-9.20.1.noarch", "product": { "name": "qemu-seabios-1.11.0-9.20.1.noarch", "product_id": "qemu-seabios-1.11.0-9.20.1.noarch" } }, { "category": "product_version", "name": "qemu-sgabios-8-9.20.1.noarch", "product": { "name": "qemu-sgabios-8-9.20.1.noarch", "product_id": "qemu-sgabios-8-9.20.1.noarch" } }, { "category": "product_version", "name": "qemu-vgabios-1.11.0-9.20.1.noarch", "product": { "name": "qemu-vgabios-1.11.0-9.20.1.noarch", "product_id": "qemu-vgabios-1.11.0-9.20.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-2.11.2-9.20.1.ppc64le", "product_id": "qemu-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-arm-2.11.2-9.20.1.ppc64le", "product_id": "qemu-arm-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-block-curl-2.11.2-9.20.1.ppc64le", "product_id": "qemu-block-curl-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-block-dmg-2.11.2-9.20.1.ppc64le", "product_id": "qemu-block-dmg-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "product_id": "qemu-block-iscsi-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-rbd-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-block-rbd-2.11.2-9.20.1.ppc64le", "product_id": "qemu-block-rbd-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-block-ssh-2.11.2-9.20.1.ppc64le", "product_id": "qemu-block-ssh-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-extra-2.11.2-9.20.1.ppc64le", "product_id": "qemu-extra-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-guest-agent-2.11.2-9.20.1.ppc64le", "product_id": "qemu-guest-agent-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-lang-2.11.2-9.20.1.ppc64le", "product_id": "qemu-lang-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-linux-user-2.11.2-9.20.1.ppc64le", "product_id": "qemu-linux-user-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-ppc-2.11.2-9.20.1.ppc64le", "product_id": "qemu-ppc-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-s390-2.11.2-9.20.1.ppc64le", "product_id": "qemu-s390-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-testsuite-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-testsuite-2.11.2-9.20.1.ppc64le", "product_id": "qemu-testsuite-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-tools-2.11.2-9.20.1.ppc64le", "product_id": "qemu-tools-2.11.2-9.20.1.ppc64le" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-9.20.1.ppc64le", "product": { "name": "qemu-x86-2.11.2-9.20.1.ppc64le", "product_id": "qemu-x86-2.11.2-9.20.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-9.20.1.s390x", "product": { "name": "qemu-2.11.2-9.20.1.s390x", "product_id": "qemu-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-9.20.1.s390x", "product": { "name": "qemu-arm-2.11.2-9.20.1.s390x", "product_id": "qemu-arm-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-9.20.1.s390x", "product": { "name": "qemu-block-curl-2.11.2-9.20.1.s390x", "product_id": "qemu-block-curl-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-9.20.1.s390x", "product": { "name": "qemu-block-dmg-2.11.2-9.20.1.s390x", "product_id": "qemu-block-dmg-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-9.20.1.s390x", "product": { "name": "qemu-block-iscsi-2.11.2-9.20.1.s390x", "product_id": "qemu-block-iscsi-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-block-rbd-2.11.2-9.20.1.s390x", "product": { "name": "qemu-block-rbd-2.11.2-9.20.1.s390x", "product_id": "qemu-block-rbd-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-9.20.1.s390x", "product": { "name": "qemu-block-ssh-2.11.2-9.20.1.s390x", "product_id": "qemu-block-ssh-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-9.20.1.s390x", "product": { "name": "qemu-extra-2.11.2-9.20.1.s390x", "product_id": "qemu-extra-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-9.20.1.s390x", "product": { "name": "qemu-guest-agent-2.11.2-9.20.1.s390x", "product_id": "qemu-guest-agent-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-kvm-2.11.2-9.20.1.s390x", "product": { "name": "qemu-kvm-2.11.2-9.20.1.s390x", "product_id": "qemu-kvm-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-9.20.1.s390x", "product": { "name": "qemu-lang-2.11.2-9.20.1.s390x", "product_id": "qemu-lang-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-9.20.1.s390x", "product": { "name": "qemu-linux-user-2.11.2-9.20.1.s390x", "product_id": "qemu-linux-user-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-9.20.1.s390x", "product": { "name": "qemu-ppc-2.11.2-9.20.1.s390x", "product_id": "qemu-ppc-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-9.20.1.s390x", "product": { "name": "qemu-s390-2.11.2-9.20.1.s390x", "product_id": "qemu-s390-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-9.20.1.s390x", "product": { "name": "qemu-tools-2.11.2-9.20.1.s390x", "product_id": "qemu-tools-2.11.2-9.20.1.s390x" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-9.20.1.s390x", "product": { "name": "qemu-x86-2.11.2-9.20.1.s390x", "product_id": "qemu-x86-2.11.2-9.20.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "qemu-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-2.11.2-9.20.1.x86_64", "product_id": "qemu-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-arm-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-arm-2.11.2-9.20.1.x86_64", "product_id": "qemu-arm-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-curl-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-block-curl-2.11.2-9.20.1.x86_64", "product_id": "qemu-block-curl-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-dmg-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-block-dmg-2.11.2-9.20.1.x86_64", "product_id": "qemu-block-dmg-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-iscsi-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-block-iscsi-2.11.2-9.20.1.x86_64", "product_id": "qemu-block-iscsi-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-rbd-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-block-rbd-2.11.2-9.20.1.x86_64", "product_id": "qemu-block-rbd-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-block-ssh-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-block-ssh-2.11.2-9.20.1.x86_64", "product_id": "qemu-block-ssh-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-extra-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-extra-2.11.2-9.20.1.x86_64", "product_id": "qemu-extra-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-guest-agent-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-guest-agent-2.11.2-9.20.1.x86_64", "product_id": "qemu-guest-agent-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-kvm-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-kvm-2.11.2-9.20.1.x86_64", "product_id": "qemu-kvm-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-lang-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-lang-2.11.2-9.20.1.x86_64", "product_id": "qemu-lang-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-linux-user-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-linux-user-2.11.2-9.20.1.x86_64", "product_id": "qemu-linux-user-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-ppc-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-ppc-2.11.2-9.20.1.x86_64", "product_id": "qemu-ppc-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-s390-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-s390-2.11.2-9.20.1.x86_64", "product_id": "qemu-s390-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-testsuite-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-testsuite-2.11.2-9.20.1.x86_64", "product_id": "qemu-testsuite-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-tools-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-tools-2.11.2-9.20.1.x86_64", "product_id": "qemu-tools-2.11.2-9.20.1.x86_64" } }, { "category": "product_version", "name": "qemu-x86-2.11.2-9.20.1.x86_64", "product": { "name": "qemu-x86-2.11.2-9.20.1.x86_64", "product_id": "qemu-x86-2.11.2-9.20.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Module for Basesystem 15", "product": { "name": "SUSE Linux Enterprise Module for Basesystem 15", "product_id": "SUSE Linux Enterprise Module for Basesystem 15", "product_identification_helper": { "cpe": "cpe:/o:suse:sle-module-basesystem:15" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Module for Server Applications 15", "product": { "name": "SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15", "product_identification_helper": { "cpe": "cpe:/o:suse:sle-module-server-applications:15" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-9.20.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15", "product_id": "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64" }, "product_reference": "qemu-tools-2.11.2-9.20.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-9.20.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15", "product_id": "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le" }, "product_reference": "qemu-tools-2.11.2-9.20.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15", "product_id": "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-tools-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-tools-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15", "product_id": "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-tools-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-9.20.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64" }, "product_reference": "qemu-2.11.2-9.20.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-9.20.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le" }, "product_reference": "qemu-2.11.2-9.20.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-arm-2.11.2-9.20.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64" }, "product_reference": "qemu-arm-2.11.2-9.20.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-9.20.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64" }, "product_reference": "qemu-block-curl-2.11.2-9.20.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-9.20.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le" }, "product_reference": "qemu-block-curl-2.11.2-9.20.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-block-curl-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-curl-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-block-curl-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-9.20.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64" }, "product_reference": "qemu-block-iscsi-2.11.2-9.20.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-9.20.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le" }, "product_reference": "qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-block-iscsi-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-iscsi-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-block-iscsi-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.11.2-9.20.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64" }, "product_reference": "qemu-block-rbd-2.11.2-9.20.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.11.2-9.20.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le" }, "product_reference": "qemu-block-rbd-2.11.2-9.20.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-block-rbd-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-rbd-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-block-rbd-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-9.20.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64" }, "product_reference": "qemu-block-ssh-2.11.2-9.20.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-9.20.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le" }, "product_reference": "qemu-block-ssh-2.11.2-9.20.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-block-ssh-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-block-ssh-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-block-ssh-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-9.20.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64" }, "product_reference": "qemu-guest-agent-2.11.2-9.20.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-9.20.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le" }, "product_reference": "qemu-guest-agent-2.11.2-9.20.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-guest-agent-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-guest-agent-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-guest-agent-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ipxe-1.0.0+-9.20.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch" }, "product_reference": "qemu-ipxe-1.0.0+-9.20.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-kvm-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-kvm-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-kvm-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-9.20.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64" }, "product_reference": "qemu-lang-2.11.2-9.20.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-9.20.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le" }, "product_reference": "qemu-lang-2.11.2-9.20.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-lang-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-lang-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-lang-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-ppc-2.11.2-9.20.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le" }, "product_reference": "qemu-ppc-2.11.2-9.20.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-s390-2.11.2-9.20.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x" }, "product_reference": "qemu-s390-2.11.2-9.20.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-seabios-1.11.0-9.20.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch" }, "product_reference": "qemu-seabios-1.11.0-9.20.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-sgabios-8-9.20.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch" }, "product_reference": "qemu-sgabios-8-9.20.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-vgabios-1.11.0-9.20.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch" }, "product_reference": "qemu-vgabios-1.11.0-9.20.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "qemu-x86-2.11.2-9.20.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", "product_id": "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" }, "product_reference": "qemu-x86-2.11.2-9.20.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15" } ] }, "vulnerabilities": [ { "cve": "CVE-2018-16872", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-16872" } ], "notes": [ { "category": "general", "text": "A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn\u0027t consider that the underlying filesystem may have changed since the time lstat(2) was called in usb_mtp_object_alloc, a classical TOCTTOU problem. An attacker with write access to the host filesystem shared with a guest can use this property to navigate the host filesystem in the context of the QEMU process and read any file the QEMU process has access to. Access to the filesystem may be local or via a network share protocol such as CIFS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-16872", "url": "https://www.suse.com/security/cve/CVE-2018-16872" }, { "category": "external", "summary": "SUSE Bug 1119493 for CVE-2018-16872", "url": "https://bugzilla.suse.com/1119493" }, { "category": "external", "summary": "SUSE Bug 1119494 for CVE-2018-16872", "url": "https://bugzilla.suse.com/1119494" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-18T15:26:50Z", "details": "moderate" } ], "title": "CVE-2018-16872" }, { "cve": "CVE-2018-18954", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-18954" } ], "notes": [ { "category": "general", "text": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-18954", "url": "https://www.suse.com/security/cve/CVE-2018-18954" }, { "category": "external", "summary": "SUSE Bug 1114957 for CVE-2018-18954", "url": "https://bugzilla.suse.com/1114957" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-18T15:26:50Z", "details": "important" } ], "title": "CVE-2018-18954" }, { "cve": "CVE-2018-19364", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-19364" } ], "notes": [ { "category": "general", "text": "hw/9pfs/cofile.c and hw/9pfs/9p.c in QEMU can modify an fid path while it is being accessed by a second thread, leading to (for example) a use-after-free outcome.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-19364", "url": "https://www.suse.com/security/cve/CVE-2018-19364" }, { "category": "external", "summary": "SUSE Bug 1116717 for CVE-2018-19364", "url": "https://bugzilla.suse.com/1116717" }, { "category": "external", "summary": "SUSE Bug 1116726 for CVE-2018-19364", "url": "https://bugzilla.suse.com/1116726" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-18T15:26:50Z", "details": "moderate" } ], "title": "CVE-2018-19364" }, { "cve": "CVE-2018-19489", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2018-19489" } ], "notes": [ { "category": "general", "text": "v9fs_wstat in hw/9pfs/9p.c in QEMU allows guest OS users to cause a denial of service (crash) because of a race condition during file renaming.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2018-19489", "url": "https://www.suse.com/security/cve/CVE-2018-19489" }, { "category": "external", "summary": "SUSE Bug 1117275 for CVE-2018-19489", "url": "https://bugzilla.suse.com/1117275" }, { "category": "external", "summary": "SUSE Bug 1117279 for CVE-2018-19489", "url": "https://bugzilla.suse.com/1117279" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 2.8, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-18T15:26:50Z", "details": "low" } ], "title": "CVE-2018-19489" }, { "cve": "CVE-2019-6778", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2019-6778" } ], "notes": [ { "category": "general", "text": "In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2019-6778", "url": "https://www.suse.com/security/cve/CVE-2019-6778" }, { "category": "external", "summary": "SUSE Bug 1123156 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1123156" }, { "category": "external", "summary": "SUSE Bug 1123157 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1123157" }, { "category": "external", "summary": "SUSE Bug 1178658 for CVE-2019-6778", "url": "https://bugzilla.suse.com/1178658" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15:qemu-tools-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-arm-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-curl-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-iscsi-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-rbd-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-block-ssh-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-guest-agent-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ipxe-1.0.0+-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-kvm-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-lang-2.11.2-9.20.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:qemu-ppc-2.11.2-9.20.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:qemu-s390-2.11.2-9.20.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15:qemu-seabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-sgabios-8-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-vgabios-1.11.0-9.20.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15:qemu-x86-2.11.2-9.20.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2019-02-18T15:26:50Z", "details": "important" } ], "title": "CVE-2019-6778" } ] }
ghsa-x3wx-mf88-5pm7
Vulnerability from github
Published
2022-05-14 00:59
Modified
2022-05-14 00:59
Severity ?
VLAI Severity ?
Details
The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.
{ "affected": [], "aliases": [ "CVE-2018-18954" ], "database_specific": { "cwe_ids": [ "CWE-125" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2018-11-15T20:29:00Z", "severity": "MODERATE" }, "details": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.", "id": "GHSA-x3wx-mf88-5pm7", "modified": "2022-05-14T00:59:49Z", "published": "2022-05-14T00:59:49Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18954" }, { "type": "WEB", "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html" }, { "type": "WEB", "url": "https://seclists.org/bugtraq/2019/May/76" }, { "type": "WEB", "url": "https://usn.ubuntu.com/3826-1" }, { "type": "WEB", "url": "https://www.debian.org/security/2019/dsa-4454" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2018/11/06/6" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/105920" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "type": "CVSS_V3" } ] }
gsd-2018-18954
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2018-18954", "description": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.", "id": "GSD-2018-18954", "references": [ "https://www.suse.com/security/cve/CVE-2018-18954.html", "https://www.debian.org/security/2019/dsa-4454", "https://ubuntu.com/security/CVE-2018-18954" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2018-18954" ], "details": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.", "id": "GSD-2018-18954", "modified": "2023-12-13T01:22:36.326753Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-18954", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "USN-3826-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/3826-1/" }, { "name": "[oss-security] 20181107 CVE-2018-18954 QEMU: ppc64: Out-of-bounds r/w stack access in pnv_lpc_do_eccb", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2018/11/06/6" }, { "name": "105920", "refsource": "BID", "url": "http://www.securityfocus.com/bid/105920" }, { "name": "[Qemu-devel] 20181103 [PATCH v2] ppc/pnv: check size before data buffer access", "refsource": "MLIST", "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html" }, { "name": "openSUSE-SU-2019:1074", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "name": "DSA-4454", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2019/dsa-4454" }, { "name": "20190531 [SECURITY] [DSA 4454-1] qemu security update", "refsource": "BUGTRAQ", "url": "https://seclists.org/bugtraq/2019/May/76" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "3.1", "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-18954" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-125" }, { "lang": "en", "value": "CWE-787" } ] } ] }, "references": { "reference_data": [ { "name": "[Qemu-devel] 20181103 [PATCH v2] ppc/pnv: check size before data buffer access", "refsource": "MLIST", "tags": [ "Mailing List", "Patch", "Third Party Advisory" ], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg00446.html" }, { "name": "[oss-security] 20181107 CVE-2018-18954 QEMU: ppc64: Out-of-bounds r/w stack access in pnv_lpc_do_eccb", "refsource": "MLIST", "tags": [ "Mailing List", "Patch", "Third Party Advisory" ], "url": "http://www.openwall.com/lists/oss-security/2018/11/06/6" }, { "name": "105920", "refsource": "BID", "tags": [ "Third Party Advisory", "VDB Entry" ], "url": "http://www.securityfocus.com/bid/105920" }, { "name": "USN-3826-1", "refsource": "UBUNTU", "tags": [ "Third Party Advisory" ], "url": "https://usn.ubuntu.com/3826-1/" }, { "name": "openSUSE-SU-2019:1074", "refsource": "SUSE", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "name": "DSA-4454", "refsource": "DEBIAN", "tags": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "name": "20190531 [SECURITY] [DSA 4454-1] qemu security update", "refsource": "BUGTRAQ", "tags": [], "url": "https://seclists.org/bugtraq/2019/May/76" } ] } }, "impact": { "baseMetricV2": { "acInsufInfo": false, "cvssV2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "LOW", "userInteractionRequired": false }, "baseMetricV3": { "cvssV3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "exploitabilityScore": 1.8, "impactScore": 3.6 } }, "lastModifiedDate": "2019-05-31T14:29Z", "publishedDate": "2018-11-15T20:29Z" } } }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…