suse-su-2018:1386-1
Vulnerability from csaf_suse
Published
2018-05-23 11:01
Modified
2018-05-23 11:01
Summary
Security update for qemu

Notes

Title of the patch
Security update for qemu
Description of the patch
This update for qemu fixes several issues. This security issue was fixed: - CVE-2018-3639: Spectre v4 vulnerability mitigation support for KVM guests (bsc#1092885). Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. This patch permits the new x86 cpu feature flag named 'ssbd' to be presented to the guest, given that the host has this feature, and KVM exposes it to the guest as well. For this feature to be enabled please use the qemu commandline -cpu $MODEL,+spec-ctrl,+ssbd so the guest OS can take advantage of the feature. spec-ctrl and ssbd support is also required in the host. - CVE-2017-5715: This update has the next round of Spectre v2 related patches, which now integrates with corresponding changes in libvirt. A January 2018 release of qemu initially addressed the Spectre v2 vulnerability for KVM guests by exposing the spec-ctrl feature for all x86 vcpu types. We remove that initial patch and now rely on patches from upstream (bsc#1068032). This update defines spec_ctrl and ibpb cpu feature flags as well as new cpu models which are clones of existing models with either -IBRS or -IBPB added to the end of the model name. These new vcpu models explicitly include the new feature(s), whereas the feature flags can be added to the cpu parameter as with other features. In short, for continued Spectre v2 protection, ensure that either the appropriate cpu feature flag is added to the QEMU command-line, or one of the new cpu models is used. Although migration from older versions is supported, the new cpu features won't be properly exposed to the guest until it is restarted with the cpu features explicitly added. A reboot is insufficient. - A patch is added to continue to detect Spectre v2 mitigation features (as shown by cpuid), and if found provide that feature to guests, even if running on older KVM (kernel) versions which do not yet expose that feature to QEMU. (bsc#1082276)
Patchnames
SUSE-SLE-SERVER-12-2018-968
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).


To clipboard 

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for qemu",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for qemu fixes several issues.\n\nThis security issue was fixed:\n\n- CVE-2018-3639: Spectre v4 vulnerability mitigation support for KVM guests (bsc#1092885).\n\n  Systems with microprocessors utilizing speculative execution and speculative\n  execution of memory reads before the addresses of all prior memory writes are\n  known may allow unauthorized disclosure of information to an attacker with\n  local user access via a side-channel analysis.\n\n  This patch permits the new x86 cpu feature flag named \u0027ssbd\u0027 to be\n  presented to the guest, given that the host has this feature, and\n  KVM exposes it to the guest as well.\n\n  For this feature to be enabled please use the qemu commandline\n  -cpu $MODEL,+spec-ctrl,+ssbd\n  so the guest OS can take advantage of the feature.\n\n  spec-ctrl and ssbd support is also required in the host.\n- CVE-2017-5715: This update has the next round of Spectre v2 related patches,\n  which now integrates with corresponding changes in libvirt. A January 2018\n  release of qemu initially addressed the Spectre v2 vulnerability for KVM guests\n  by exposing the spec-ctrl feature for all x86 vcpu types. We remove that\n  initial patch and now rely on patches from upstream (bsc#1068032).\n\n  This update defines spec_ctrl and ibpb cpu feature flags as well as new cpu\n  models which are clones of existing models with either -IBRS or -IBPB added to\n  the end of the model name. These new vcpu models explicitly include the new\n  feature(s), whereas the feature flags can be added to the cpu parameter as with\n  other features. In short, for continued Spectre v2 protection, ensure that\n  either the appropriate cpu feature flag is added to the QEMU command-line, or\n  one of the new cpu models is used. Although migration from older versions is\n  supported, the new cpu features won\u0027t be properly exposed to the guest until it\n  is restarted with the cpu features explicitly added. A reboot is insufficient.\n- A patch is added to continue to detect Spectre v2 mitigation features (as\n  shown by cpuid), and if found provide that feature to guests, even if running\n  on older KVM (kernel) versions which do not yet expose that feature to QEMU.\n  (bsc#1082276)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-SERVER-12-2018-968",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_1386-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:1386-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20181386-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:1386-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-May/004082.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068032",
        "url": "https://bugzilla.suse.com/1068032"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082276",
        "url": "https://bugzilla.suse.com/1082276"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1092885",
        "url": "https://bugzilla.suse.com/1092885"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5715 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5715/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-3639 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-3639/"
      }
    ],
    "title": "Security update for qemu",
    "tracking": {
      "current_release_date": "2018-05-23T11:01:58Z",
      "generator": {
        "date": "2018-05-23T11:01:58Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:1386-1",
      "initial_release_date": "2018-05-23T11:01:58Z",
      "revision_history": [
        {
          "date": "2018-05-23T11:01:58Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "qemu-ipxe-1.0.0-48.40.2.noarch",
                "product": {
                  "name": "qemu-ipxe-1.0.0-48.40.2.noarch",
                  "product_id": "qemu-ipxe-1.0.0-48.40.2.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-seabios-1.7.4-48.40.2.noarch",
                "product": {
                  "name": "qemu-seabios-1.7.4-48.40.2.noarch",
                  "product_id": "qemu-seabios-1.7.4-48.40.2.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-sgabios-8-48.40.2.noarch",
                "product": {
                  "name": "qemu-sgabios-8-48.40.2.noarch",
                  "product_id": "qemu-sgabios-8-48.40.2.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-vgabios-1.7.4-48.40.2.noarch",
                "product": {
                  "name": "qemu-vgabios-1.7.4-48.40.2.noarch",
                  "product_id": "qemu-vgabios-1.7.4-48.40.2.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "qemu-2.0.2-48.40.2.ppc64le",
                "product": {
                  "name": "qemu-2.0.2-48.40.2.ppc64le",
                  "product_id": "qemu-2.0.2-48.40.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-block-curl-2.0.2-48.40.2.ppc64le",
                "product": {
                  "name": "qemu-block-curl-2.0.2-48.40.2.ppc64le",
                  "product_id": "qemu-block-curl-2.0.2-48.40.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-guest-agent-2.0.2-48.40.2.ppc64le",
                "product": {
                  "name": "qemu-guest-agent-2.0.2-48.40.2.ppc64le",
                  "product_id": "qemu-guest-agent-2.0.2-48.40.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-lang-2.0.2-48.40.2.ppc64le",
                "product": {
                  "name": "qemu-lang-2.0.2-48.40.2.ppc64le",
                  "product_id": "qemu-lang-2.0.2-48.40.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-ppc-2.0.2-48.40.2.ppc64le",
                "product": {
                  "name": "qemu-ppc-2.0.2-48.40.2.ppc64le",
                  "product_id": "qemu-ppc-2.0.2-48.40.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-tools-2.0.2-48.40.2.ppc64le",
                "product": {
                  "name": "qemu-tools-2.0.2-48.40.2.ppc64le",
                  "product_id": "qemu-tools-2.0.2-48.40.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "qemu-2.0.2-48.40.2.s390x",
                "product": {
                  "name": "qemu-2.0.2-48.40.2.s390x",
                  "product_id": "qemu-2.0.2-48.40.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-block-curl-2.0.2-48.40.2.s390x",
                "product": {
                  "name": "qemu-block-curl-2.0.2-48.40.2.s390x",
                  "product_id": "qemu-block-curl-2.0.2-48.40.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-guest-agent-2.0.2-48.40.2.s390x",
                "product": {
                  "name": "qemu-guest-agent-2.0.2-48.40.2.s390x",
                  "product_id": "qemu-guest-agent-2.0.2-48.40.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-kvm-2.0.2-48.40.2.s390x",
                "product": {
                  "name": "qemu-kvm-2.0.2-48.40.2.s390x",
                  "product_id": "qemu-kvm-2.0.2-48.40.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-lang-2.0.2-48.40.2.s390x",
                "product": {
                  "name": "qemu-lang-2.0.2-48.40.2.s390x",
                  "product_id": "qemu-lang-2.0.2-48.40.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-s390-2.0.2-48.40.2.s390x",
                "product": {
                  "name": "qemu-s390-2.0.2-48.40.2.s390x",
                  "product_id": "qemu-s390-2.0.2-48.40.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-tools-2.0.2-48.40.2.s390x",
                "product": {
                  "name": "qemu-tools-2.0.2-48.40.2.s390x",
                  "product_id": "qemu-tools-2.0.2-48.40.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "qemu-2.0.2-48.40.2.x86_64",
                "product": {
                  "name": "qemu-2.0.2-48.40.2.x86_64",
                  "product_id": "qemu-2.0.2-48.40.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-block-curl-2.0.2-48.40.2.x86_64",
                "product": {
                  "name": "qemu-block-curl-2.0.2-48.40.2.x86_64",
                  "product_id": "qemu-block-curl-2.0.2-48.40.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-block-rbd-2.0.2-48.40.2.x86_64",
                "product": {
                  "name": "qemu-block-rbd-2.0.2-48.40.2.x86_64",
                  "product_id": "qemu-block-rbd-2.0.2-48.40.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-guest-agent-2.0.2-48.40.2.x86_64",
                "product": {
                  "name": "qemu-guest-agent-2.0.2-48.40.2.x86_64",
                  "product_id": "qemu-guest-agent-2.0.2-48.40.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-kvm-2.0.2-48.40.2.x86_64",
                "product": {
                  "name": "qemu-kvm-2.0.2-48.40.2.x86_64",
                  "product_id": "qemu-kvm-2.0.2-48.40.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-lang-2.0.2-48.40.2.x86_64",
                "product": {
                  "name": "qemu-lang-2.0.2-48.40.2.x86_64",
                  "product_id": "qemu-lang-2.0.2-48.40.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-tools-2.0.2-48.40.2.x86_64",
                "product": {
                  "name": "qemu-tools-2.0.2-48.40.2.x86_64",
                  "product_id": "qemu-tools-2.0.2-48.40.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "qemu-x86-2.0.2-48.40.2.x86_64",
                "product": {
                  "name": "qemu-x86-2.0.2-48.40.2.x86_64",
                  "product_id": "qemu-x86-2.0.2-48.40.2.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-2.0.2-48.40.2.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.ppc64le"
        },
        "product_reference": "qemu-2.0.2-48.40.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-2.0.2-48.40.2.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.s390x"
        },
        "product_reference": "qemu-2.0.2-48.40.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-2.0.2-48.40.2.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.x86_64"
        },
        "product_reference": "qemu-2.0.2-48.40.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-block-curl-2.0.2-48.40.2.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.ppc64le"
        },
        "product_reference": "qemu-block-curl-2.0.2-48.40.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-block-curl-2.0.2-48.40.2.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.s390x"
        },
        "product_reference": "qemu-block-curl-2.0.2-48.40.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-block-curl-2.0.2-48.40.2.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.x86_64"
        },
        "product_reference": "qemu-block-curl-2.0.2-48.40.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-block-rbd-2.0.2-48.40.2.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-block-rbd-2.0.2-48.40.2.x86_64"
        },
        "product_reference": "qemu-block-rbd-2.0.2-48.40.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-guest-agent-2.0.2-48.40.2.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.ppc64le"
        },
        "product_reference": "qemu-guest-agent-2.0.2-48.40.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-guest-agent-2.0.2-48.40.2.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.s390x"
        },
        "product_reference": "qemu-guest-agent-2.0.2-48.40.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-guest-agent-2.0.2-48.40.2.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.x86_64"
        },
        "product_reference": "qemu-guest-agent-2.0.2-48.40.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-ipxe-1.0.0-48.40.2.noarch as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-ipxe-1.0.0-48.40.2.noarch"
        },
        "product_reference": "qemu-ipxe-1.0.0-48.40.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-kvm-2.0.2-48.40.2.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.s390x"
        },
        "product_reference": "qemu-kvm-2.0.2-48.40.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-kvm-2.0.2-48.40.2.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.x86_64"
        },
        "product_reference": "qemu-kvm-2.0.2-48.40.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-lang-2.0.2-48.40.2.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.ppc64le"
        },
        "product_reference": "qemu-lang-2.0.2-48.40.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-lang-2.0.2-48.40.2.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.s390x"
        },
        "product_reference": "qemu-lang-2.0.2-48.40.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-lang-2.0.2-48.40.2.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.x86_64"
        },
        "product_reference": "qemu-lang-2.0.2-48.40.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-ppc-2.0.2-48.40.2.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-ppc-2.0.2-48.40.2.ppc64le"
        },
        "product_reference": "qemu-ppc-2.0.2-48.40.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-s390-2.0.2-48.40.2.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-s390-2.0.2-48.40.2.s390x"
        },
        "product_reference": "qemu-s390-2.0.2-48.40.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-seabios-1.7.4-48.40.2.noarch as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-seabios-1.7.4-48.40.2.noarch"
        },
        "product_reference": "qemu-seabios-1.7.4-48.40.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-sgabios-8-48.40.2.noarch as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-sgabios-8-48.40.2.noarch"
        },
        "product_reference": "qemu-sgabios-8-48.40.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-tools-2.0.2-48.40.2.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.ppc64le"
        },
        "product_reference": "qemu-tools-2.0.2-48.40.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-tools-2.0.2-48.40.2.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.s390x"
        },
        "product_reference": "qemu-tools-2.0.2-48.40.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-tools-2.0.2-48.40.2.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.x86_64"
        },
        "product_reference": "qemu-tools-2.0.2-48.40.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-vgabios-1.7.4-48.40.2.noarch as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-vgabios-1.7.4-48.40.2.noarch"
        },
        "product_reference": "qemu-vgabios-1.7.4-48.40.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qemu-x86-2.0.2-48.40.2.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:qemu-x86-2.0.2-48.40.2.x86_64"
        },
        "product_reference": "qemu-x86-2.0.2-48.40.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-5715",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5715"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-block-rbd-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-ipxe-1.0.0-48.40.2.noarch",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-ppc-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-s390-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-seabios-1.7.4-48.40.2.noarch",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-sgabios-8-48.40.2.noarch",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-vgabios-1.7.4-48.40.2.noarch",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-x86-2.0.2-48.40.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5715",
          "url": "https://www.suse.com/security/cve/CVE-2017-5715"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074741 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074741"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074919 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075007 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075262 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076115 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076372 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076606 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1078353 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1078353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087887 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088147 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1088147"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1095735 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1095735"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102517 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1102517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126516 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1126516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173489 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1173489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201457 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201457"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203236 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1203236"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-rbd-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-ipxe-1.0.0-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-ppc-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-s390-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-seabios-1.7.4-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-sgabios-8-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-vgabios-1.7.4-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-x86-2.0.2-48.40.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-rbd-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-ipxe-1.0.0-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-ppc-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-s390-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-seabios-1.7.4-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-sgabios-8-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-vgabios-1.7.4-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-x86-2.0.2-48.40.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-05-23T11:01:58Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5715"
    },
    {
      "cve": "CVE-2018-3639",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-3639"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-block-rbd-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-ipxe-1.0.0-48.40.2.noarch",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-ppc-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-s390-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-seabios-1.7.4-48.40.2.noarch",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-sgabios-8-48.40.2.noarch",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.ppc64le",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.s390x",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-vgabios-1.7.4-48.40.2.noarch",
          "SUSE Linux Enterprise Server 12-LTSS:qemu-x86-2.0.2-48.40.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-3639",
          "url": "https://www.suse.com/security/cve/CVE-2018-3639"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085235 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1085235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085308 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1085308"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087078 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1087078"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092631 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1092631"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092885 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1092885"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1094912 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1094912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1098813 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1098813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1100394 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1100394"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102640 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1102640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105412 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1105412"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1111963 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1111963"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172781 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1172781"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172782 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1172782"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172783 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1172783"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173489 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1173489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215674 for CVE-2018-3639",
          "url": "https://bugzilla.suse.com/1215674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-rbd-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-ipxe-1.0.0-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-ppc-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-s390-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-seabios-1.7.4-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-sgabios-8-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-vgabios-1.7.4-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-x86-2.0.2-48.40.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-curl-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-block-rbd-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-guest-agent-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-ipxe-1.0.0-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-kvm-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-lang-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-ppc-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-s390-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-seabios-1.7.4-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-sgabios-8-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.ppc64le",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.s390x",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-tools-2.0.2-48.40.2.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-vgabios-1.7.4-48.40.2.noarch",
            "SUSE Linux Enterprise Server 12-LTSS:qemu-x86-2.0.2-48.40.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-05-23T11:01:58Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-3639"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.