Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-14378 (GCVE-0-2019-14378)
Vulnerability from cvelistv5 – Published: 2019-07-29 10:05 – Updated: 2024-08-05 00:19
VLAI
EPSS
Summary
ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
27 references
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T00:19:40.277Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/126c04acbabd7ad32c2b018fe10dfac2a3bc1210"
},
{
"name": "[oss-security] 20190801 CVE-2019-14378 QEMU: slirp: heap buffer overflow during packet reassembly",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2019/08/01/2"
},
{
"name": "FEDORA-2019-77bafc4454",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPLHB2AN663OXAWUQURF7J2X5LHD4VD3/"
},
{
"name": "20190825 [SECURITY] [DSA 4506-1] qemu security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "https://seclists.org/bugtraq/2019/Aug/41"
},
{
"name": "DSA-4506",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2019/dsa-4506"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://blog.bi0s.in/2019/08/24/Pwn/VM-Escape/2019-07-29-qemu-vm-escape-cve-2019-14378/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://news.ycombinator.com/item?id=20799010"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://packetstormsecurity.com/files/154269/QEMU-Denial-Of-Service.html"
},
{
"name": "openSUSE-SU-2019:2041",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00000.html"
},
{
"name": "DSA-4512",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2019/dsa-4512"
},
{
"name": "20190902 [SECURITY] [DSA 4512-1] qemu security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "https://seclists.org/bugtraq/2019/Sep/3"
},
{
"name": "openSUSE-SU-2019:2059",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00008.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.f5.com/csp/article/K25423748"
},
{
"name": "[debian-lts-announce] 20190920 [SECURITY] [DLA 1927-1] qemu security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.f5.com/csp/article/K25423748?utm_source=f5support\u0026amp%3Butm_medium=RSS"
},
{
"name": "RHSA-2019:3179",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3179"
},
{
"name": "RHSA-2019:3403",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3403"
},
{
"name": "RHSA-2019:3494",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3494"
},
{
"name": "RHSA-2019:3742",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3742"
},
{
"name": "RHSA-2019:3787",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3787"
},
{
"name": "USN-4191-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4191-2/"
},
{
"name": "openSUSE-SU-2019:2510",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html"
},
{
"name": "USN-4191-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4191-1/"
},
{
"name": "RHSA-2019:3968",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3968"
},
{
"name": "RHSA-2019:4344",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4344"
},
{
"name": "RHSA-2020:0366",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0366"
},
{
"name": "RHSA-2020:0775",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0775"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-03-11T11:06:29.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/126c04acbabd7ad32c2b018fe10dfac2a3bc1210"
},
{
"name": "[oss-security] 20190801 CVE-2019-14378 QEMU: slirp: heap buffer overflow during packet reassembly",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2019/08/01/2"
},
{
"name": "FEDORA-2019-77bafc4454",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPLHB2AN663OXAWUQURF7J2X5LHD4VD3/"
},
{
"name": "20190825 [SECURITY] [DSA 4506-1] qemu security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "https://seclists.org/bugtraq/2019/Aug/41"
},
{
"name": "DSA-4506",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2019/dsa-4506"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://blog.bi0s.in/2019/08/24/Pwn/VM-Escape/2019-07-29-qemu-vm-escape-cve-2019-14378/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://news.ycombinator.com/item?id=20799010"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://packetstormsecurity.com/files/154269/QEMU-Denial-Of-Service.html"
},
{
"name": "openSUSE-SU-2019:2041",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00000.html"
},
{
"name": "DSA-4512",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2019/dsa-4512"
},
{
"name": "20190902 [SECURITY] [DSA 4512-1] qemu security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "https://seclists.org/bugtraq/2019/Sep/3"
},
{
"name": "openSUSE-SU-2019:2059",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00008.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.f5.com/csp/article/K25423748"
},
{
"name": "[debian-lts-announce] 20190920 [SECURITY] [DLA 1927-1] qemu security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.f5.com/csp/article/K25423748?utm_source=f5support\u0026amp%3Butm_medium=RSS"
},
{
"name": "RHSA-2019:3179",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3179"
},
{
"name": "RHSA-2019:3403",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3403"
},
{
"name": "RHSA-2019:3494",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3494"
},
{
"name": "RHSA-2019:3742",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3742"
},
{
"name": "RHSA-2019:3787",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3787"
},
{
"name": "USN-4191-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4191-2/"
},
{
"name": "openSUSE-SU-2019:2510",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html"
},
{
"name": "USN-4191-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4191-1/"
},
{
"name": "RHSA-2019:3968",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3968"
},
{
"name": "RHSA-2019:4344",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4344"
},
{
"name": "RHSA-2020:0366",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0366"
},
{
"name": "RHSA-2020:0775",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0775"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-14378",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://gitlab.freedesktop.org/slirp/libslirp/commit/126c04acbabd7ad32c2b018fe10dfac2a3bc1210",
"refsource": "MISC",
"url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/126c04acbabd7ad32c2b018fe10dfac2a3bc1210"
},
{
"name": "[oss-security] 20190801 CVE-2019-14378 QEMU: slirp: heap buffer overflow during packet reassembly",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2019/08/01/2"
},
{
"name": "FEDORA-2019-77bafc4454",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPLHB2AN663OXAWUQURF7J2X5LHD4VD3/"
},
{
"name": "20190825 [SECURITY] [DSA 4506-1] qemu security update",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Aug/41"
},
{
"name": "DSA-4506",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4506"
},
{
"name": "https://blog.bi0s.in/2019/08/24/Pwn/VM-Escape/2019-07-29-qemu-vm-escape-cve-2019-14378/",
"refsource": "MISC",
"url": "https://blog.bi0s.in/2019/08/24/Pwn/VM-Escape/2019-07-29-qemu-vm-escape-cve-2019-14378/"
},
{
"name": "https://news.ycombinator.com/item?id=20799010",
"refsource": "MISC",
"url": "https://news.ycombinator.com/item?id=20799010"
},
{
"name": "http://packetstormsecurity.com/files/154269/QEMU-Denial-Of-Service.html",
"refsource": "MISC",
"url": "http://packetstormsecurity.com/files/154269/QEMU-Denial-Of-Service.html"
},
{
"name": "openSUSE-SU-2019:2041",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00000.html"
},
{
"name": "DSA-4512",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4512"
},
{
"name": "20190902 [SECURITY] [DSA 4512-1] qemu security update",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Sep/3"
},
{
"name": "openSUSE-SU-2019:2059",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00008.html"
},
{
"name": "https://support.f5.com/csp/article/K25423748",
"refsource": "CONFIRM",
"url": "https://support.f5.com/csp/article/K25423748"
},
{
"name": "[debian-lts-announce] 20190920 [SECURITY] [DLA 1927-1] qemu security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html"
},
{
"name": "https://support.f5.com/csp/article/K25423748?utm_source=f5support\u0026amp;utm_medium=RSS",
"refsource": "CONFIRM",
"url": "https://support.f5.com/csp/article/K25423748?utm_source=f5support\u0026amp;utm_medium=RSS"
},
{
"name": "RHSA-2019:3179",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3179"
},
{
"name": "RHSA-2019:3403",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3403"
},
{
"name": "RHSA-2019:3494",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3494"
},
{
"name": "RHSA-2019:3742",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3742"
},
{
"name": "RHSA-2019:3787",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3787"
},
{
"name": "USN-4191-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4191-2/"
},
{
"name": "openSUSE-SU-2019:2510",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html"
},
{
"name": "USN-4191-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4191-1/"
},
{
"name": "RHSA-2019:3968",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3968"
},
{
"name": "RHSA-2019:4344",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4344"
},
{
"name": "RHSA-2020:0366",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2020:0366"
},
{
"name": "RHSA-2020:0775",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2020:0775"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-14378",
"datePublished": "2019-07-29T10:05:22.000Z",
"dateReserved": "2019-07-29T00:00:00.000Z",
"dateUpdated": "2024-08-05T00:19:40.277Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-14378",
"date": "2026-05-29",
"epss": "0.06468",
"percentile": "0.91219"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-14378\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2019-07-29T11:15:11.577\",\"lastModified\":\"2024-11-21T04:26:37.327\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n ip_reass en el archivo ip_input.c en libslirp versi\u00f3n 4.0.0, presenta un desbordamiento de b\u00fafer en la regi\u00f3n heap de la memoria por medio de un paquete largo debido a que maneja inapropiadamente un caso que involucra el primer fragmento.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:P/I:P/A:P\",\"baseScore\":6.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-755\"},{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:libslirp_project:libslirp:4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E90373CB-B4F2-4811-AFF1-0EAF7D2DDB2E\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00000.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00008.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://packetstormsecurity.com/files/154269/QEMU-Denial-Of-Service.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/08/01/2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3179\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3403\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3494\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3742\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3787\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3968\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4344\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0366\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0775\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://blog.bi0s.in/2019/08/24/Pwn/VM-Escape/2019-07-29-qemu-vm-escape-cve-2019-14378/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://gitlab.freedesktop.org/slirp/libslirp/commit/126c04acbabd7ad32c2b018fe10dfac2a3bc1210\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPLHB2AN663OXAWUQURF7J2X5LHD4VD3/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://news.ycombinator.com/item?id=20799010\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://seclists.org/bugtraq/2019/Aug/41\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://seclists.org/bugtraq/2019/Sep/3\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.f5.com/csp/article/K25423748\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.f5.com/csp/article/K25423748?utm_source=f5support\u0026amp%3Butm_medium=RSS\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://usn.ubuntu.com/4191-1/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://usn.ubuntu.com/4191-2/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.debian.org/security/2019/dsa-4506\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.debian.org/security/2019/dsa-4512\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00008.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://packetstormsecurity.com/files/154269/QEMU-Denial-Of-Service.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/08/01/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3179\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3403\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3494\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3742\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3787\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3968\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4344\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0366\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0775\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://blog.bi0s.in/2019/08/24/Pwn/VM-Escape/2019-07-29-qemu-vm-escape-cve-2019-14378/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://gitlab.freedesktop.org/slirp/libslirp/commit/126c04acbabd7ad32c2b018fe10dfac2a3bc1210\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPLHB2AN663OXAWUQURF7J2X5LHD4VD3/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://news.ycombinator.com/item?id=20799010\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://seclists.org/bugtraq/2019/Aug/41\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://seclists.org/bugtraq/2019/Sep/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.f5.com/csp/article/K25423748\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.f5.com/csp/article/K25423748?utm_source=f5support\u0026amp%3Butm_medium=RSS\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/4191-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/4191-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2019/dsa-4506\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2019/dsa-4512\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
RHSA-2020:0366
Vulnerability from csaf_redhat - Published: 2020-02-04 19:50 - Updated: 2026-05-28 20:36Summary
Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update
Severity
Important
Notes
Topic: An update for qemu-kvm is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.
Security Fix(es):
* hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135)
* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* [Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm (BZ#1730606)
Enhancement(s):
* [Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm (BZ#1755333)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the way Intel CPUs handle speculative execution of instructions when the TSX Asynchronous Abort (TAA) error occurs. A local authenticated attacker with the ability to monitor execution times could infer the TSX memory state by comparing abort execution times. This could allow information disclosure via this observed side-channel for any TSX transaction being executed while an attacker is able to observe abort timing. Intel's Transactional Synchronisation Extensions (TSX) are set of instructions which enable transactional memory support to improve performance of the multi-threaded applications, in the lock-protected critical sections. The CPU executes instructions in the critical-sections as transactions, while ensuring their atomic state. When such transaction execution is unsuccessful, the processor cannot ensure atomic updates to the transaction memory, so the processor rolls back or aborts such transaction execution. While TSX Asynchronous Abort (TAA) is pending, CPU may continue to read data from architectural buffers and pass it to the dependent speculative operations. This may cause information leakage via speculative side-channel means, which is quite similar to the Microarchitectural Data Sampling (MDS) issue.
6.5 (Medium)
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m->m_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.
7.0 (High)
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
16 references
Acknowledgments
Intel
Vishnu Dev
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.\n\nSecurity Fix(es):\n\n* hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135)\n\n* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* [Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm (BZ#1730606)\n\nEnhancement(s):\n\n* [Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm (BZ#1755333)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0366",
"url": "https://access.redhat.com/errata/RHSA-2020:0366"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/tsx-asynchronousabort",
"url": "https://access.redhat.com/solutions/tsx-asynchronousabort"
},
{
"category": "external",
"summary": "1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "1753062",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1753062"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0366.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2026-05-28T20:36:54+00:00",
"generator": {
"date": "2026-05-28T20:36:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2020:0366",
"initial_release_date": "2020-02-04T19:50:02+00:00",
"revision_history": [
{
"date": "2020-02-04T19:50:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-02-04T19:50:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-28T20:36:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"product": {
"name": "qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"product_id": "qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img@1.5.3-167.el7_7.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"product": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"product_id": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@1.5.3-167.el7_7.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"product": {
"name": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"product_id": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common@1.5.3-167.el7_7.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"product": {
"name": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"product_id": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools@1.5.3-167.el7_7.4?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"product": {
"name": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"product_id": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@1.5.3-167.el7_7.4?arch=x86_64\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.src",
"product": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.src",
"product_id": "qemu-kvm-10:1.5.3-167.el7_7.4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@1.5.3-167.el7_7.4?arch=src\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-167.el7_7.4.src",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-167.el7_7.4.src",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-167.el7_7.4.src",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src"
},
"product_reference": "qemu-kvm-10:1.5.3-167.el7_7.4.src",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"relates_to_product_reference": "7Workstation-7.7.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Intel"
]
}
],
"cve": "CVE-2019-11135",
"cwe": {
"id": "CWE-385",
"name": "Covert Timing Channel"
},
"discovery_date": "2019-09-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1753062"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way Intel CPUs handle speculative execution of instructions when the TSX Asynchronous Abort (TAA) error occurs. A local authenticated attacker with the ability to monitor execution times could infer the TSX memory state by comparing abort execution times. This could allow information disclosure via this observed side-channel for any TSX transaction being executed while an attacker is able to observe abort timing.\r\n\r\nIntel\u0027s Transactional Synchronisation Extensions (TSX) are set of instructions which enable transactional memory support to improve performance of the multi-threaded applications, in the lock-protected critical sections. The CPU executes instructions in the critical-sections as transactions, while ensuring their atomic state. When such transaction execution is unsuccessful, the processor cannot ensure atomic updates to the transaction memory, so the processor rolls back or aborts such transaction execution.\r\n\r\nWhile TSX Asynchronous Abort (TAA) is pending, CPU may continue to read data from architectural buffers and pass it to the dependent speculative operations. This may cause information leakage via speculative side-channel means, which is quite similar to the Microarchitectural Data Sampling (MDS) issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: TSX Transaction Asynchronous Abort (TAA)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "libvirt and qemu-kvm on Red Hat Enterprise Linux 6 are not affected by this vulnerability as they do not support MSR-based CPU features.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-11135"
},
{
"category": "external",
"summary": "RHBZ#1753062",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1753062"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-11135",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11135"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-11135",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-11135"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/tsx-asynchronousabort",
"url": "https://access.redhat.com/solutions/tsx-asynchronousabort"
},
{
"category": "external",
"summary": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00270.html",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00270.html"
}
],
"release_date": "2019-11-12T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-02-04T19:50:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0366"
},
{
"category": "workaround",
"details": "For mitigation related information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/solutions/tsx-asynchronousabort",
"product_ids": [
"7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "hw: TSX Transaction Asynchronous Abort (TAA)"
},
{
"acknowledgments": [
{
"names": [
"Vishnu Dev"
]
}
],
"cve": "CVE-2019-14378",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-07-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1734745"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m-\u003em_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: heap buffer overflow during packet reassembly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.\n* Because the flaw\u0027s impact is Low, it will not be fixed in Red Hat OpenStack Platform 9 which is retiring within a few weeks of the flaw\u0027s public date.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "RHBZ#1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14378",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378"
}
],
"release_date": "2019-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-02-04T19:50:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0366"
},
{
"category": "workaround",
"details": "There is no external mitigation to prevent this out-of-bounds heap memory access.",
"product_ids": [
"7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"7Client-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Client-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Client-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7ComputeNode-optional-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7ComputeNode-optional-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Server-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Server-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-img-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.src",
"7Workstation-7.7.Z:qemu-kvm-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-common-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-debuginfo-10:1.5.3-167.el7_7.4.x86_64",
"7Workstation-7.7.Z:qemu-kvm-tools-10:1.5.3-167.el7_7.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: heap buffer overflow during packet reassembly"
}
]
}
RHSA-2020:0775
Vulnerability from csaf_redhat - Published: 2020-03-10 11:42 - Updated: 2025-11-21 18:12Summary
Red Hat Security Advisory: qemu-kvm security update
Severity
Important
Notes
Topic: An update for qemu-kvm is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.
Security Fix(es):
* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)
* QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() (CVE-2020-7039)
* QEMU: Slirp: use-after-free during packet reassembly (CVE-2019-15890)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m->m_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.
7.0 (High)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A use-after-free issue was found in the SLiRP networking implementation of the QEMU emulator. The issue occurs in ip_reass() routine while reassembling incoming packets, if the first fragment is bigger than the m->m_dat[] buffer. A user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service.
5.6 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the tcp_emu() routine while emulating IRC and other protocols. An attacker could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process.
5.6 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
18 references
Acknowledgments
Vishnu Dev
Vishnu Dev TJ
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.\n\nSecurity Fix(es):\n\n* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)\n\n* QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() (CVE-2020-7039)\n\n* QEMU: Slirp: use-after-free during packet reassembly (CVE-2019-15890)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0775",
"url": "https://access.redhat.com/errata/RHSA-2020:0775"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "1749716",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716"
},
{
"category": "external",
"summary": "1791551",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0775.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm security update",
"tracking": {
"current_release_date": "2025-11-21T18:12:38+00:00",
"generator": {
"date": "2025-11-21T18:12:38+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:0775",
"initial_release_date": "2020-03-10T11:42:05+00:00",
"revision_history": [
{
"date": "2020-03-10T11:42:05+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-03-10T11:42:05+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:12:38+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"product": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"product_id": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-guest-agent@0.12.1.2-2.506.el6_10.6?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"product": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"product_id": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@0.12.1.2-2.506.el6_10.6?arch=i686\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_id": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-guest-agent@0.12.1.2-2.506.el6_10.6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product": {
"name": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_id": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img@0.12.1.2-2.506.el6_10.6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_id": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@0.12.1.2-2.506.el6_10.6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_id": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools@0.12.1.2-2.506.el6_10.6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_id": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@0.12.1.2-2.506.el6_10.6?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"product": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"product_id": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@0.12.1.2-2.506.el6_10.6?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"product": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"product_id": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-guest-agent@0.12.1.2-2.506.el6_10.6?arch=ppc64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"product": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"product_id": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@0.12.1.2-2.506.el6_10.6?arch=ppc64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
},
"product_reference": "qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"relates_to_product_reference": "6Workstation-6.10.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Vishnu Dev"
]
}
],
"cve": "CVE-2019-14378",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-07-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1734745"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m-\u003em_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: heap buffer overflow during packet reassembly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.\n* Because the flaw\u0027s impact is Low, it will not be fixed in Red Hat OpenStack Platform 9 which is retiring within a few weeks of the flaw\u0027s public date.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "RHBZ#1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14378",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378"
}
],
"release_date": "2019-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-10T11:42:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0775"
},
{
"category": "workaround",
"details": "There is no external mitigation to prevent this out-of-bounds heap memory access.",
"product_ids": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: heap buffer overflow during packet reassembly"
},
{
"cve": "CVE-2019-15890",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2019-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1749716"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free issue was found in the SLiRP networking implementation of the QEMU emulator. The issue occurs in ip_reass() routine while reassembling incoming packets, if the first fragment is bigger than the m-\u003em_dat[] buffer. A user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: Slirp: use-after-free during packet reassembly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15890"
},
{
"category": "external",
"summary": "RHBZ#1749716",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15890",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890"
}
],
"release_date": "2019-08-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-10T11:42:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0775"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "QEMU: Slirp: use-after-free during packet reassembly"
},
{
"acknowledgments": [
{
"names": [
"Vishnu Dev TJ"
]
}
],
"cve": "CVE-2020-7039",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-08-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1791551"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the tcp_emu() routine while emulating IRC and other protocols. An attacker could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects user-mode or SLiRP networking implementation of the QEMU emulator. Though qemu-kvm package is built with SLiRP networking support, due to its limitations, it is not used by the virtual machine guests by default.\n\nThis issue affects versions of the qemu-kvm package as shipped with Red Hat Enterprise Linux 5, 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8. Future qemu-kvm package updates for Red Hat Enterprise Linux 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8 may address this issue.\n\nRed Hat Enterprise Linux 5 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This issue is currently not planned to be addressed in its future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nRed Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-7039"
},
{
"category": "external",
"summary": "RHBZ#1791551",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-7039",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7039"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-7039",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7039"
}
],
"release_date": "2020-01-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-10T11:42:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0775"
},
{
"category": "workaround",
"details": "This issue can only be resolved by applying updates.\n\nMitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Client-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Client-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Client-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6ComputeNode-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6ComputeNode-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6ComputeNode-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Server-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Server-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Server-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-guest-agent-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-img-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.src",
"6Workstation-6.10.z:qemu-kvm-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.i686",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.ppc64",
"6Workstation-6.10.z:qemu-kvm-debuginfo-2:0.12.1.2-2.506.el6_10.6.x86_64",
"6Workstation-6.10.z:qemu-kvm-tools-2:0.12.1.2-2.506.el6_10.6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu()"
}
]
}
RHSA-2020:0889
Vulnerability from csaf_redhat - Published: 2020-03-17 17:57 - Updated: 2025-11-21 18:12Summary
Red Hat Security Advisory: slirp4netns security update
Severity
Important
Notes
Topic: An update for slirp4netns is now available for Red Hat Enterprise Linux 7 Extras.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The slirp4netns package contains user-mode networking for unprivileged network namespaces. It is required to enable networking for rootless containers.
Security Fix(es):
* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)
* QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() (CVE-2020-7039)
* CVE-2020-8608 slirp4netns: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
* CVE-2019-15890 QEMU: Slirp: use-after-free during packet reassembly
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m->m_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.
7.0 (High)
Affected products
Fixed
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A use-after-free issue was found in the SLiRP networking implementation of the QEMU emulator. The issue occurs in ip_reass() routine while reassembling incoming packets, if the first fragment is bigger than the m->m_dat[] buffer. A user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service.
5.6 (Medium)
Affected products
Fixed
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the tcp_emu() routine while emulating IRC and other protocols. An attacker could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process.
5.6 (Medium)
Affected products
Fixed
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcp_emu() routine while emulating IRC and other protocols due to unsafe usage of the snprintf(3) function. A user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host.
5.6 (Medium)
Affected products
Fixed
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
23 references
Acknowledgments
Vishnu Dev
Vishnu Dev TJ
redhat.com
Laszlo Ersek
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for slirp4netns is now available for Red Hat Enterprise Linux 7 Extras.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The slirp4netns package contains user-mode networking for unprivileged network namespaces. It is required to enable networking for rootless containers.\n\nSecurity Fix(es):\n\n* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)\n\n* QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() (CVE-2020-7039)\n\n* CVE-2020-8608 slirp4netns: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages\n\n* CVE-2019-15890 QEMU: Slirp: use-after-free during packet reassembly\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0889",
"url": "https://access.redhat.com/errata/RHSA-2020:0889"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "1749716",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716"
},
{
"category": "external",
"summary": "1791551",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551"
},
{
"category": "external",
"summary": "1798453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0889.json"
}
],
"title": "Red Hat Security Advisory: slirp4netns security update",
"tracking": {
"current_release_date": "2025-11-21T18:12:47+00:00",
"generator": {
"date": "2025-11-21T18:12:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:0889",
"initial_release_date": "2020-03-17T17:57:49+00:00",
"revision_history": [
{
"date": "2020-03-17T17:57:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-03-17T17:57:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:12:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux 7 Extras",
"product": {
"name": "Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_other:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux 7 Extras",
"product": {
"name": "Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_other:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Extras"
},
{
"branches": [
{
"category": "product_version",
"name": "slirp4netns-0:0.3.0-8.el7_7.x86_64",
"product": {
"name": "slirp4netns-0:0.3.0-8.el7_7.x86_64",
"product_id": "slirp4netns-0:0.3.0-8.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns@0.3.0-8.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"product": {
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"product_id": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debuginfo@0.3.0-8.el7_7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "slirp4netns-0:0.3.0-8.el7_7.src",
"product": {
"name": "slirp4netns-0:0.3.0-8.el7_7.src",
"product_id": "slirp4netns-0:0.3.0-8.el7_7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns@0.3.0-8.el7_7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"product": {
"name": "slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"product_id": "slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns@0.3.0-8.el7_7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"product": {
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"product_id": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debuginfo@0.3.0-8.el7_7?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "slirp4netns-0:0.3.0-8.el7_7.s390x",
"product": {
"name": "slirp4netns-0:0.3.0-8.el7_7.s390x",
"product_id": "slirp4netns-0:0.3.0-8.el7_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns@0.3.0-8.el7_7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"product": {
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"product_id": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debuginfo@0.3.0-8.el7_7?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-8.el7_7.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le"
},
"product_reference": "slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-8.el7_7.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x"
},
"product_reference": "slirp4netns-0:0.3.0-8.el7_7.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-8.el7_7.src as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src"
},
"product_reference": "slirp4netns-0:0.3.0-8.el7_7.src",
"relates_to_product_reference": "7Server-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64"
},
"product_reference": "slirp4netns-0:0.3.0-8.el7_7.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-8.el7_7.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le"
},
"product_reference": "slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"relates_to_product_reference": "7Workstation-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-8.el7_7.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x"
},
"product_reference": "slirp4netns-0:0.3.0-8.el7_7.s390x",
"relates_to_product_reference": "7Workstation-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-8.el7_7.src as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src"
},
"product_reference": "slirp4netns-0:0.3.0-8.el7_7.src",
"relates_to_product_reference": "7Workstation-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64"
},
"product_reference": "slirp4netns-0:0.3.0-8.el7_7.x86_64",
"relates_to_product_reference": "7Workstation-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"relates_to_product_reference": "7Workstation-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"relates_to_product_reference": "7Workstation-EXTRAS-7.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"relates_to_product_reference": "7Workstation-EXTRAS-7.7"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Vishnu Dev"
]
}
],
"cve": "CVE-2019-14378",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-07-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1734745"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m-\u003em_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: heap buffer overflow during packet reassembly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.\n* Because the flaw\u0027s impact is Low, it will not be fixed in Red Hat OpenStack Platform 9 which is retiring within a few weeks of the flaw\u0027s public date.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "RHBZ#1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14378",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378"
}
],
"release_date": "2019-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-17T17:57:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0889"
},
{
"category": "workaround",
"details": "There is no external mitigation to prevent this out-of-bounds heap memory access.",
"product_ids": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: heap buffer overflow during packet reassembly"
},
{
"cve": "CVE-2019-15890",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2019-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1749716"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free issue was found in the SLiRP networking implementation of the QEMU emulator. The issue occurs in ip_reass() routine while reassembling incoming packets, if the first fragment is bigger than the m-\u003em_dat[] buffer. A user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: Slirp: use-after-free during packet reassembly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15890"
},
{
"category": "external",
"summary": "RHBZ#1749716",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15890",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890"
}
],
"release_date": "2019-08-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-17T17:57:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0889"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "QEMU: Slirp: use-after-free during packet reassembly"
},
{
"acknowledgments": [
{
"names": [
"Vishnu Dev TJ"
]
}
],
"cve": "CVE-2020-7039",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-08-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1791551"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the tcp_emu() routine while emulating IRC and other protocols. An attacker could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects user-mode or SLiRP networking implementation of the QEMU emulator. Though qemu-kvm package is built with SLiRP networking support, due to its limitations, it is not used by the virtual machine guests by default.\n\nThis issue affects versions of the qemu-kvm package as shipped with Red Hat Enterprise Linux 5, 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8. Future qemu-kvm package updates for Red Hat Enterprise Linux 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8 may address this issue.\n\nRed Hat Enterprise Linux 5 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This issue is currently not planned to be addressed in its future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nRed Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-7039"
},
{
"category": "external",
"summary": "RHBZ#1791551",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-7039",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7039"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-7039",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7039"
}
],
"release_date": "2020-01-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-17T17:57:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0889"
},
{
"category": "workaround",
"details": "This issue can only be resolved by applying updates.\n\nMitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu()"
},
{
"acknowledgments": [
{
"names": [
"Laszlo Ersek"
],
"organization": "redhat.com"
}
],
"cve": "CVE-2020-8608",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-01-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798453"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcp_emu() routine while emulating IRC and other protocols due to unsafe usage of the snprintf(3) function. A user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: Slirp: potential OOB access due to unsafe snprintf() usages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects user-mode or SLiRP networking implementation of the QEMU emulator. Though qemu-kvm package is built with SLiRP networking support, due to its limitations, it is not used by the virtual machine guests by default.\n\nThis issue affects versions of the qemu-kvm package as shipped with Red Hat Enterprise Linux 5, 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8. Future qemu-kvm package updates for Red Hat Enterprise Linux 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8 may address this issue.\n\nRed Hat Enterprise Linux 5 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This issue is currently not planned to be addressed in its future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nRed Hat OpenStack Platform: \nThis flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-8608"
},
{
"category": "external",
"summary": "RHBZ#1798453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-8608",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8608"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-8608",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8608"
}
],
"release_date": "2020-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-17T17:57:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0889"
},
{
"category": "workaround",
"details": "This issue can only be resolved by applying updates.\n\nMitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Server-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Server-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.src",
"7Workstation-EXTRAS-7.7:slirp4netns-0:0.3.0-8.el7_7.x86_64",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.ppc64le",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.s390x",
"7Workstation-EXTRAS-7.7:slirp4netns-debuginfo-0:0.3.0-8.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: Slirp: potential OOB access due to unsafe snprintf() usages"
}
]
}
RHSA-2020:1216
Vulnerability from csaf_redhat - Published: 2020-03-31 14:36 - Updated: 2026-02-23 19:17Summary
Red Hat Security Advisory: qemu-kvm-rhev security, bug fix, and enhancement update
Severity
Important
Notes
Topic: An update for qemu-kvm-rhev is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7 and Red Hat Virtualization Engine 4.3.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.
Security Fix(es):
* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)
* QEMU: block: iscsi: OOB heap access via an unexpected response of iSCSI Server (CVE-2020-1711)
* QEMU: qxl: null pointer dereference while releasing spice resources (CVE-2019-12155)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* After host update, older windows clients have large time drift (BZ#1639098)
* [v2v] Migration performance regression (BZ#1648622)
* Live storage migration fails with: TimeoutError: Timed out during operation: cannot acquire state change lock (held by monitor=remoteDispatchConnectGetAllDomainStats) and the VM becomes 'Not Responding' (BZ#1665256)
* QEMU gets stuck on resume/cont call from libvirt (BZ#1673546)
* [Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm-rhev (BZ#1709972)
* qemu aborts in blockCommit: qemu-kvm: block.c:3486: bdrv_replace_node: Assertion `!({ _Static_assert(!(sizeof(*&from->in_flight) > 8), "not expecting: " "sizeof(*&from->in_flight) > ATOMIC_REG_SIZE"); __atomic_load_n(&from->in_flight, 0); })' failed. (BZ#1711643)
* ccid: Fix incorrect dwProtocol advertisement of T=0 (BZ#1721522)
* Fail to migrate a rhel6.10-mt7.6 guest with dimm device (BZ#1724048)
* qemu-kvm: backport cpuidle-haltpoll support (BZ#1734502)
* qemu, qemu-img fail to detect alignment with XFS and Gluster/XFS on 4k block device (BZ#1743365)
* ISST-LTE:RHV4.3 on RHEL7.6 kvm host:Power8:Tuleta-L:lotg7: call traces dumped on guest while performing guest migration (qemu-kvm-rhev) (BZ#1743508)
* qemu coredump: qemu-kvm: block/create.c:68: qmp_blockdev_create: Assertion `drv' failed (BZ#1746224)
* [Data plane]virtio_scsi_ctx_check: Assertion `blk_get_aio_context(d->conf.blk) == s->ctx' failed when unplug a device that running block stream on it (BZ#1764120)
* qemu-kvm crashes when Windows VM is migrated with multiqueue (BZ#1775251)
Enhancement(s):
* [Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm-rhev (BZ#1716726)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
interface_release_resource in hw/display/qxl.c in QEMU 3.1.x through 4.0.0 has a NULL pointer dereference.
CWE-476 - NULL Pointer DereferenceAffected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m->m_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.
7.0 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. A remote user could use this flaw to crash the QEMU process, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host.
6.0 (Medium)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
28 references
Acknowledgments
Ruhr University Bochum
Cornelius Aschermann
Sergej Schumilo
Simon Wrner
Vishnu Dev
nutanix.com
Felipe Franciosi
Peter Turschmid
Raphael Norwitz
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm-rhev is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7 and Red Hat Virtualization Engine 4.3.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.\n\nSecurity Fix(es):\n\n* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)\n\n* QEMU: block: iscsi: OOB heap access via an unexpected response of iSCSI Server (CVE-2020-1711)\n\n* QEMU: qxl: null pointer dereference while releasing spice resources (CVE-2019-12155)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* After host update, older windows clients have large time drift (BZ#1639098)\n\n* [v2v] Migration performance regression (BZ#1648622)\n\n* Live storage migration fails with: TimeoutError: Timed out during operation: cannot acquire state change lock (held by monitor=remoteDispatchConnectGetAllDomainStats) and the VM becomes \u0027Not Responding\u0027 (BZ#1665256)\n\n* QEMU gets stuck on resume/cont call from libvirt (BZ#1673546)\n\n* [Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm-rhev (BZ#1709972)\n\n* qemu aborts in blockCommit: qemu-kvm: block.c:3486: bdrv_replace_node: Assertion `!({ _Static_assert(!(sizeof(*\u0026from-\u003ein_flight) \u003e 8), \"not expecting: \" \"sizeof(*\u0026from-\u003ein_flight) \u003e ATOMIC_REG_SIZE\"); __atomic_load_n(\u0026from-\u003ein_flight, 0); })\u0027 failed. (BZ#1711643)\n\n* ccid: Fix incorrect dwProtocol advertisement of T=0 (BZ#1721522)\n\n* Fail to migrate a rhel6.10-mt7.6 guest with dimm device (BZ#1724048)\n\n* qemu-kvm: backport cpuidle-haltpoll support (BZ#1734502)\n\n* qemu, qemu-img fail to detect alignment with XFS and Gluster/XFS on 4k block device (BZ#1743365)\n\n* ISST-LTE:RHV4.3 on RHEL7.6 kvm host:Power8:Tuleta-L:lotg7: call traces dumped on guest while performing guest migration (qemu-kvm-rhev) (BZ#1743508)\n\n* qemu coredump: qemu-kvm: block/create.c:68: qmp_blockdev_create: Assertion `drv\u0027 failed (BZ#1746224)\n\n* [Data plane]virtio_scsi_ctx_check: Assertion `blk_get_aio_context(d-\u003econf.blk) == s-\u003ectx\u0027 failed when unplug a device that running block stream on it (BZ#1764120)\n\n* qemu-kvm crashes when Windows VM is migrated with multiqueue (BZ#1775251)\n\nEnhancement(s):\n\n* [Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm-rhev (BZ#1716726)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:1216",
"url": "https://access.redhat.com/errata/RHSA-2020:1216"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1648622",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1648622"
},
{
"category": "external",
"summary": "1665256",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1665256"
},
{
"category": "external",
"summary": "1711643",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1711643"
},
{
"category": "external",
"summary": "1712670",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712670"
},
{
"category": "external",
"summary": "1721522",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1721522"
},
{
"category": "external",
"summary": "1724048",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1724048"
},
{
"category": "external",
"summary": "1734502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734502"
},
{
"category": "external",
"summary": "1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "1743365",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743365"
},
{
"category": "external",
"summary": "1746224",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1746224"
},
{
"category": "external",
"summary": "1764120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764120"
},
{
"category": "external",
"summary": "1775251",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1775251"
},
{
"category": "external",
"summary": "1794290",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1794290"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1216.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm-rhev security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2026-02-23T19:17:19+00:00",
"generator": {
"date": "2026-02-23T19:17:19+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.1"
}
},
"id": "RHSA-2020:1216",
"initial_release_date": "2020-03-31T14:36:08+00:00",
"revision_history": [
{
"date": "2020-03-31T14:36:08+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-03-31T14:36:08+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-02-23T19:17:19+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product": {
"name": "Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
}
}
},
{
"category": "product_name",
"name": "RHV-M 4.3",
"product": {
"name": "RHV-M 4.3",
"product_id": "7Server-RHV-S-4.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhev_manager:4.3"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"product": {
"name": "qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"product_id": "qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img-rhev@2.12.0-44.el7?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"product": {
"name": "qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"product_id": "qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common-rhev@2.12.0-44.el7?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"product": {
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"product_id": "qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.12.0-44.el7?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"product": {
"name": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"product_id": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools-rhev@2.12.0-44.el7?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"product": {
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"product_id": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev-debuginfo@2.12.0-44.el7?arch=ppc64le\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"product": {
"name": "qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"product_id": "qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img-rhev@2.12.0-44.el7?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"product": {
"name": "qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"product_id": "qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common-rhev@2.12.0-44.el7?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"product": {
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"product_id": "qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.12.0-44.el7?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"product": {
"name": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"product_id": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools-rhev@2.12.0-44.el7?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"product": {
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"product_id": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev-debuginfo@2.12.0-44.el7?arch=x86_64\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.src",
"product": {
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.src",
"product_id": "qemu-kvm-rhev-10:2.12.0-44.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.12.0-44.el7?arch=src\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-rhev-10:2.12.0-44.el7.ppc64le as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le"
},
"product_reference": "qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-rhev-10:2.12.0-44.el7.x86_64 as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le"
},
"product_reference": "qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64 as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le"
},
"product_reference": "qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.src as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src"
},
"product_reference": "qemu-kvm-rhev-10:2.12.0-44.el7.src",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.x86_64 as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le"
},
"product_reference": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64 as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le"
},
"product_reference": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64 as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHEV-4-Agents-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-rhev-10:2.12.0-44.el7.x86_64 as a component of RHV-M 4.3",
"product_id": "7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64 as a component of RHV-M 4.3",
"product_id": "7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.src as a component of RHV-M 4.3",
"product_id": "7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src"
},
"product_reference": "qemu-kvm-rhev-10:2.12.0-44.el7.src",
"relates_to_product_reference": "7Server-RHV-S-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.12.0-44.el7.x86_64 as a component of RHV-M 4.3",
"product_id": "7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64 as a component of RHV-M 4.3",
"product_id": "7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64 as a component of RHV-M 4.3",
"product_id": "7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
},
"product_reference": "qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.3"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Cornelius Aschermann",
"Sergej Schumilo",
"Simon Wrner"
],
"organization": "Ruhr University Bochum"
}
],
"cve": "CVE-2019-12155",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2019-04-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1712670"
}
],
"notes": [
{
"category": "description",
"text": "interface_release_resource in hw/display/qxl.c in QEMU 3.1.x through 4.0.0 has a NULL pointer dereference.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: qxl: null pointer dereference while releasing spice resources",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-12155"
},
{
"category": "external",
"summary": "RHBZ#1712670",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712670"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-12155",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-12155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-12155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12155"
}
],
"release_date": "2019-04-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-31T14:36:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1216"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "QEMU: qxl: null pointer dereference while releasing spice resources"
},
{
"acknowledgments": [
{
"names": [
"Vishnu Dev"
]
}
],
"cve": "CVE-2019-14378",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-07-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1734745"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m-\u003em_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: heap buffer overflow during packet reassembly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.\n* Because the flaw\u0027s impact is Low, it will not be fixed in Red Hat OpenStack Platform 9 which is retiring within a few weeks of the flaw\u0027s public date.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "RHBZ#1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14378",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378"
}
],
"release_date": "2019-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-31T14:36:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1216"
},
{
"category": "workaround",
"details": "There is no external mitigation to prevent this out-of-bounds heap memory access.",
"product_ids": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: heap buffer overflow during packet reassembly"
},
{
"acknowledgments": [
{
"names": [
"Felipe Franciosi",
"Peter Turschmid",
"Raphael Norwitz"
],
"organization": "nutanix.com"
}
],
"cve": "CVE-2020-1711",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-01-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1794290"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. A remote user could use this flaw to crash the QEMU process, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: block: iscsi: OOB heap access via an unexpected response of iSCSI Server",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of the qemu-kvm package as shipped with Red Hat Enterprise Linux 8, Red Hat OpenStack, Red Hat Virtualization and Red Hat Enterprise Linux Advanced Virtualization 8.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-1711"
},
{
"category": "external",
"summary": "RHBZ#1794290",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1794290"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-1711",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1711"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-1711",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-1711"
}
],
"release_date": "2020-01-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-31T14:36:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1216"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.ppc64le",
"7Server-RHEV-4-Agents-7:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-img-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-common-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.src",
"7Server-RHV-S-4.3:qemu-kvm-rhev-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-rhev-debuginfo-10:2.12.0-44.el7.x86_64",
"7Server-RHV-S-4.3:qemu-kvm-tools-rhev-10:2.12.0-44.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: block: iscsi: OOB heap access via an unexpected response of iSCSI Server"
}
]
}
RHSA-2020:2065
Vulnerability from csaf_redhat - Published: 2020-05-11 21:40 - Updated: 2025-11-21 18:14Summary
Red Hat Security Advisory: qemu-kvm-ma security update
Severity
Important
Notes
Topic: An update for qemu-kvm-ma is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide the user-space component for running virtual machines that use KVM on the IBM z Systems, IBM Power, and 64-bit ARM architectures.
Security Fix(es):
* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m->m_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.
7.0 (High)
Affected products
Fixed
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
8 references
Acknowledgments
Vishnu Dev
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm-ma is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide the user-space component for running virtual machines that use KVM on the IBM z Systems, IBM Power, and 64-bit ARM architectures.\n\nSecurity Fix(es):\n\n* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:2065",
"url": "https://access.redhat.com/errata/RHSA-2020:2065"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2065.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm-ma security update",
"tracking": {
"current_release_date": "2025-11-21T18:14:15+00:00",
"generator": {
"date": "2025-11-21T18:14:15+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:2065",
"initial_release_date": "2020-05-11T21:40:18+00:00",
"revision_history": [
{
"date": "2020-05-11T21:40:18+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-05-11T21:40:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:14:15+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product": {
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product_id": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img-ma@2.12.0-18.el7_6.6?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product": {
"name": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product_id": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common-ma@2.12.0-18.el7_6.6?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product": {
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product_id": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-ma@2.12.0-18.el7_6.6?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product": {
"name": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product_id": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools-ma@2.12.0-18.el7_6.6?arch=ppc64le\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"product": {
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"product_id": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-ma-debuginfo@2.12.0-18.el7_6.6?arch=ppc64le\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"product": {
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"product_id": "qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img-ma@2.12.0-18.el7_6.6?arch=s390x\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"product": {
"name": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"product_id": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common-ma@2.12.0-18.el7_6.6?arch=s390x\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"product": {
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"product_id": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-ma@2.12.0-18.el7_6.6?arch=s390x\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x",
"product": {
"name": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x",
"product_id": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools-ma@2.12.0-18.el7_6.6?arch=s390x\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"product": {
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"product_id": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-ma-debuginfo@2.12.0-18.el7_6.6?arch=s390x\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"product": {
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"product_id": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-ma@2.12.0-18.el7_6.6?arch=src\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"product": {
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"product_id": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img-ma@2.12.0-18.el7_6.6?arch=ppc64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"product": {
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"product_id": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-ma-debuginfo@2.12.0-18.el7_6.6?arch=ppc64\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64"
},
"product_reference": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src"
},
"product_reference": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64"
},
"product_reference": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64"
},
"product_reference": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-ma-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src"
},
"product_reference": "qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64"
},
"product_reference": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le"
},
"product_reference": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x"
},
"product_reference": "qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Vishnu Dev"
]
}
],
"cve": "CVE-2019-14378",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-07-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1734745"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m-\u003em_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: heap buffer overflow during packet reassembly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.\n* Because the flaw\u0027s impact is Low, it will not be fixed in Red Hat OpenStack Platform 9 which is retiring within a few weeks of the flaw\u0027s public date.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "RHBZ#1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14378",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378"
}
],
"release_date": "2019-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-05-11T21:40:18+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:2065"
},
{
"category": "workaround",
"details": "There is no external mitigation to prevent this out-of-bounds heap memory access.",
"product_ids": [
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-7.6.EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-img-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-common-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-10:2.12.0-18.el7_6.6.src",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-ma-debuginfo-10:2.12.0-18.el7_6.6.s390x",
"7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.ppc64le",
"7Server-Alt-7.6-EUS:qemu-kvm-tools-ma-10:2.12.0-18.el7_6.6.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: heap buffer overflow during packet reassembly"
}
]
}
RHSA-2020:2126
Vulnerability from csaf_redhat - Published: 2020-05-13 07:55 - Updated: 2025-11-21 18:14Summary
Red Hat Security Advisory: qemu-kvm security update
Severity
Important
Notes
Topic: An update for qemu-kvm is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.
Security Fix(es):
* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m->m_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.
7.0 (High)
Affected products
Fixed
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
8 references
Acknowledgments
Vishnu Dev
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.\n\nSecurity Fix(es):\n\n* QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:2126",
"url": "https://access.redhat.com/errata/RHSA-2020:2126"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2126.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm security update",
"tracking": {
"current_release_date": "2025-11-21T18:14:20+00:00",
"generator": {
"date": "2025-11-21T18:14:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:2126",
"initial_release_date": "2020-05-13T07:55:02+00:00",
"revision_history": [
{
"date": "2020-05-13T07:55:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-05-13T07:55:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:14:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"product": {
"name": "qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"product_id": "qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img@1.5.3-160.el7_6.6?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"product": {
"name": "qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"product_id": "qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@1.5.3-160.el7_6.6?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"product": {
"name": "qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"product_id": "qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common@1.5.3-160.el7_6.6?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64",
"product": {
"name": "qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64",
"product_id": "qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools@1.5.3-160.el7_6.6?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"product": {
"name": "qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"product_id": "qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-debuginfo@1.5.3-160.el7_6.6?arch=x86_64\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-10:1.5.3-160.el7_6.6.src",
"product": {
"name": "qemu-kvm-10:1.5.3-160.el7_6.6.src",
"product_id": "qemu-kvm-10:1.5.3-160.el7_6.6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm@1.5.3-160.el7_6.6?arch=src\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-160.el7_6.6.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src"
},
"product_reference": "qemu-kvm-10:1.5.3-160.el7_6.6.src",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-160.el7_6.6.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src"
},
"product_reference": "qemu-kvm-10:1.5.3-160.el7_6.6.src",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64"
},
"product_reference": "qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Vishnu Dev"
]
}
],
"cve": "CVE-2019-14378",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-07-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1734745"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m-\u003em_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: heap buffer overflow during packet reassembly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.\n* Because the flaw\u0027s impact is Low, it will not be fixed in Red Hat OpenStack Platform 9 which is retiring within a few weeks of the flaw\u0027s public date.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-optional-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src",
"7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "RHBZ#1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14378",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378"
}
],
"release_date": "2019-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-05-13T07:55:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"product_ids": [
"7ComputeNode-optional-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src",
"7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:2126"
},
{
"category": "workaround",
"details": "There is no external mitigation to prevent this out-of-bounds heap memory access.",
"product_ids": [
"7ComputeNode-optional-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src",
"7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-optional-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"7ComputeNode-optional-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-img-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.src",
"7Server-7.6.EUS:qemu-kvm-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-common-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-debuginfo-10:1.5.3-160.el7_6.6.x86_64",
"7Server-7.6.EUS:qemu-kvm-tools-10:1.5.3-160.el7_6.6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: heap buffer overflow during packet reassembly"
}
]
}
RHSA-2020:2342
Vulnerability from csaf_redhat - Published: 2020-06-01 06:42 - Updated: 2025-11-21 18:14Summary
Red Hat Security Advisory: qemu-kvm-rhev bug fix update
Severity
Important
Notes
Topic: An update for qemu-kvm-rhev is now available for Red Hat Virtualization for Red Hat Virtualization Host 7.
Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.
Security Fix(es):
* CVE-2020-8608 QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
* CVE-2020-7039 QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu()
* CVE-2019-14378 QEMU: slirp: heap buffer overflow during packet reassembly
This update fixes the following bug:
* BZ 1804577 Backport: Passthrough host CPU microcode version to KVM guest if using CPU passthrough to RHEL 7.7/7.8 [rhel-7.6.z]
Users of qemu-kvm are advised to upgrade to these updated packages. After installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m->m_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.
7.0 (High)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the tcp_emu() routine while emulating IRC and other protocols. An attacker could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process.
5.6 (Medium)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcp_emu() routine while emulating IRC and other protocols due to unsafe usage of the snprintf(3) function. A user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host.
5.6 (Medium)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
19 references
Acknowledgments
Vishnu Dev
Vishnu Dev TJ
redhat.com
Laszlo Ersek
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for qemu-kvm-rhev is now available for Red Hat Virtualization for Red Hat Virtualization Host 7.\n\nRed Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.\n\nSecurity Fix(es):\n\n* CVE-2020-8608 QEMU: Slirp: potential OOB access due to unsafe snprintf() usages\n\n* CVE-2020-7039 QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu()\n\n* CVE-2019-14378 QEMU: slirp: heap buffer overflow during packet reassembly\n\nThis update fixes the following bug:\n\n* BZ 1804577 Backport: Passthrough host CPU microcode version to KVM guest if using CPU passthrough to RHEL 7.7/7.8 [rhel-7.6.z] \n\nUsers of qemu-kvm are advised to upgrade to these updated packages. After installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:2342",
"url": "https://access.redhat.com/errata/RHSA-2020:2342"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "1791551",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551"
},
{
"category": "external",
"summary": "1798453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453"
},
{
"category": "external",
"summary": "1804577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1804577"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2342.json"
}
],
"title": "Red Hat Security Advisory: qemu-kvm-rhev bug fix update",
"tracking": {
"current_release_date": "2025-11-21T18:14:35+00:00",
"generator": {
"date": "2025-11-21T18:14:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:2342",
"initial_release_date": "2020-06-01T06:42:45+00:00",
"revision_history": [
{
"date": "2020-06-01T06:42:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-06-01T06:42:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:14:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHV-M 4.2",
"product": {
"name": "RHV-M 4.2",
"product_id": "7Server-RHV-S-4.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhev_manager:4.2"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product": {
"name": "qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product_id": "qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-img-rhev@2.12.0-18.el7_6.11?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product": {
"name": "qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product_id": "qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-common-rhev@2.12.0-18.el7_6.11?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product": {
"name": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product_id": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.12.0-18.el7_6.11?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product": {
"name": "qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product_id": "qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-tools-rhev@2.12.0-18.el7_6.11?arch=x86_64\u0026epoch=10"
}
}
},
{
"category": "product_version",
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"product": {
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"product_id": "qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev-debuginfo@2.12.0-18.el7_6.11?arch=x86_64\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"product": {
"name": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"product_id": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/qemu-kvm-rhev@2.12.0-18.el7_6.11?arch=src\u0026epoch=10"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64 as a component of RHV-M 4.2",
"product_id": "7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64"
},
"product_reference": "qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64 as a component of RHV-M 4.2",
"product_id": "7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64"
},
"product_reference": "qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src as a component of RHV-M 4.2",
"product_id": "7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src"
},
"product_reference": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"relates_to_product_reference": "7Server-RHV-S-4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64 as a component of RHV-M 4.2",
"product_id": "7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64"
},
"product_reference": "qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64 as a component of RHV-M 4.2",
"product_id": "7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64"
},
"product_reference": "qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64 as a component of RHV-M 4.2",
"product_id": "7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
},
"product_reference": "qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64",
"relates_to_product_reference": "7Server-RHV-S-4.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Vishnu Dev"
]
}
],
"cve": "CVE-2019-14378",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-07-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1734745"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ip_reass() routine while reassembling incoming packets if the first fragment is bigger than the m-\u003em_dat[] buffer. An attacker could use this flaw to crash the QEMU process on the host, resulting in a Denial of Service or potentially executing arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: heap buffer overflow during packet reassembly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.\n* Because the flaw\u0027s impact is Low, it will not be fixed in Red Hat OpenStack Platform 9 which is retiring within a few weeks of the flaw\u0027s public date.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "RHBZ#1734745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14378",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14378"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14378"
}
],
"release_date": "2019-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-06-01T06:42:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:2342"
},
{
"category": "workaround",
"details": "There is no external mitigation to prevent this out-of-bounds heap memory access.",
"product_ids": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: heap buffer overflow during packet reassembly"
},
{
"acknowledgments": [
{
"names": [
"Vishnu Dev TJ"
]
}
],
"cve": "CVE-2020-7039",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2019-08-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1791551"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the tcp_emu() routine while emulating IRC and other protocols. An attacker could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects user-mode or SLiRP networking implementation of the QEMU emulator. Though qemu-kvm package is built with SLiRP networking support, due to its limitations, it is not used by the virtual machine guests by default.\n\nThis issue affects versions of the qemu-kvm package as shipped with Red Hat Enterprise Linux 5, 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8. Future qemu-kvm package updates for Red Hat Enterprise Linux 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8 may address this issue.\n\nRed Hat Enterprise Linux 5 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This issue is currently not planned to be addressed in its future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nRed Hat OpenStack Platform: \n* This flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-7039"
},
{
"category": "external",
"summary": "RHBZ#1791551",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-7039",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7039"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-7039",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7039"
}
],
"release_date": "2020-01-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-06-01T06:42:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:2342"
},
{
"category": "workaround",
"details": "This issue can only be resolved by applying updates.\n\nMitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu()"
},
{
"acknowledgments": [
{
"names": [
"Laszlo Ersek"
],
"organization": "redhat.com"
}
],
"cve": "CVE-2020-8608",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-01-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798453"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcp_emu() routine while emulating IRC and other protocols due to unsafe usage of the snprintf(3) function. A user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: Slirp: potential OOB access due to unsafe snprintf() usages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects user-mode or SLiRP networking implementation of the QEMU emulator. Though qemu-kvm package is built with SLiRP networking support, due to its limitations, it is not used by the virtual machine guests by default.\n\nThis issue affects versions of the qemu-kvm package as shipped with Red Hat Enterprise Linux 5, 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8. Future qemu-kvm package updates for Red Hat Enterprise Linux 6, 7, 8 and Red Hat Enterprise Linux Advanced Virtualization 8 may address this issue.\n\nRed Hat Enterprise Linux 5 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This issue is currently not planned to be addressed in its future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nRed Hat OpenStack Platform: \nThis flaw impacts KVM user-mode or SLIRP networking, which is not used in Red Hat OpenStack Platform. Although updating is recommended for affected versions (see below), Red Hat OpenStack Platform environments are not vulnerable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-8608"
},
{
"category": "external",
"summary": "RHBZ#1798453",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-8608",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8608"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-8608",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8608"
}
],
"release_date": "2020-01-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-06-01T06:42:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:2342"
},
{
"category": "workaround",
"details": "This issue can only be resolved by applying updates.\n\nMitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"7Server-RHV-S-4.2:qemu-img-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-common-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.src",
"7Server-RHV-S-4.2:qemu-kvm-rhev-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-rhev-debuginfo-10:2.12.0-18.el7_6.11.x86_64",
"7Server-RHV-S-4.2:qemu-kvm-tools-rhev-10:2.12.0-18.el7_6.11.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: Slirp: potential OOB access due to unsafe snprintf() usages"
}
]
}
SUSE-SU-2019:14151-1
Vulnerability from csaf_suse - Published: 2019-08-21 16:01 - Updated: 2019-08-21 16:01Summary
Security update for kvm
Severity
Important
Notes
Title of the patch: Security update for kvm
Description of the patch: This update for kvm fixes the following issues:
Security issues fixed:
- CVE-2019-14378: Security fix for heap overflow in ip_reass on big packet input (bsc#1143794).
- CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources (bsc#1135902).
- CVE-2019-13164: Security fix for qemu-bridge-helper ACL can be bypassed when names are too long (bsc#1140402).
Patchnames: slessp4-kvm-14151
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
4.7 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
19 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for kvm",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for kvm fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-14378: Security fix for heap overflow in ip_reass on big packet input (bsc#1143794).\n- CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources (bsc#1135902).\n- CVE-2019-13164: Security fix for qemu-bridge-helper ACL can be bypassed when names are too long (bsc#1140402).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slessp4-kvm-14151",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_14151-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:14151-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-201914151-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:14151-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-August/005835.html"
},
{
"category": "self",
"summary": "SUSE Bug 1135902",
"url": "https://bugzilla.suse.com/1135902"
},
{
"category": "self",
"summary": "SUSE Bug 1140402",
"url": "https://bugzilla.suse.com/1140402"
},
{
"category": "self",
"summary": "SUSE Bug 1143794",
"url": "https://bugzilla.suse.com/1143794"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12155 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-13164 page",
"url": "https://www.suse.com/security/cve/CVE-2019-13164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-14378 page",
"url": "https://www.suse.com/security/cve/CVE-2019-14378/"
}
],
"title": "Security update for kvm",
"tracking": {
"current_release_date": "2019-08-21T16:01:41Z",
"generator": {
"date": "2019-08-21T16:01:41Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:14151-1",
"initial_release_date": "2019-08-21T16:01:41Z",
"revision_history": [
{
"date": "2019-08-21T16:01:41Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kvm-1.4.2-60.27.1.i586",
"product": {
"name": "kvm-1.4.2-60.27.1.i586",
"product_id": "kvm-1.4.2-60.27.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "kvm-1.4.2-60.27.1.s390x",
"product": {
"name": "kvm-1.4.2-60.27.1.s390x",
"product_id": "kvm-1.4.2-60.27.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kvm-1.4.2-60.27.1.x86_64",
"product": {
"name": "kvm-1.4.2-60.27.1.x86_64",
"product_id": "kvm-1.4.2-60.27.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kvm-1.4.2-60.27.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586"
},
"product_reference": "kvm-1.4.2-60.27.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kvm-1.4.2-60.27.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x"
},
"product_reference": "kvm-1.4.2-60.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kvm-1.4.2-60.27.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
},
"product_reference": "kvm-1.4.2-60.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-12155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12155"
}
],
"notes": [
{
"category": "general",
"text": "interface_release_resource in hw/display/qxl.c in QEMU 3.1.x through 4.0.0 has a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12155",
"url": "https://www.suse.com/security/cve/CVE-2019-12155"
},
{
"category": "external",
"summary": "SUSE Bug 1135902 for CVE-2019-12155",
"url": "https://bugzilla.suse.com/1135902"
},
{
"category": "external",
"summary": "SUSE Bug 1135905 for CVE-2019-12155",
"url": "https://bugzilla.suse.com/1135905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.8,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-08-21T16:01:41Z",
"details": "low"
}
],
"title": "CVE-2019-12155"
},
{
"cve": "CVE-2019-13164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-13164"
}
],
"notes": [
{
"category": "general",
"text": "qemu-bridge-helper.c in QEMU 3.1 and 4.0.0 does not ensure that a network interface name (obtained from bridge.conf or a --br=bridge option) is limited to the IFNAMSIZ size, which can lead to an ACL bypass.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-13164",
"url": "https://www.suse.com/security/cve/CVE-2019-13164"
},
{
"category": "external",
"summary": "SUSE Bug 1140402 for CVE-2019-13164",
"url": "https://bugzilla.suse.com/1140402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-08-21T16:01:41Z",
"details": "moderate"
}
],
"title": "CVE-2019-13164"
},
{
"cve": "CVE-2019-14378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-14378"
}
],
"notes": [
{
"category": "general",
"text": "ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-14378",
"url": "https://www.suse.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "SUSE Bug 1143794 for CVE-2019-14378",
"url": "https://bugzilla.suse.com/1143794"
},
{
"category": "external",
"summary": "SUSE Bug 1143797 for CVE-2019-14378",
"url": "https://bugzilla.suse.com/1143797"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-14378",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-LTSS:kvm-1.4.2-60.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-08-21T16:01:41Z",
"details": "important"
}
],
"title": "CVE-2019-14378"
}
]
}
SUSE-SU-2019:14199-1
Vulnerability from csaf_suse - Published: 2019-10-24 11:23 - Updated: 2019-10-24 11:23Summary
Security update for xen
Severity
Important
Notes
Title of the patch: Security update for xen
Description of the patch: This update for xen fixes the following issues:
- CVE-2019-15890: Fixed a use-after-free in SLiRP networking implementation of QEMU emulator
which could have led to Denial of Service (bsc#1149813).
- CVE-2019-12068: Fixed an issue in lsi which could lead to an infinite loop and denial of
service (bsc#1146874).
- CVE-2019-14378: Fixed a heap buffer overflow in SLiRp networking implementation of QEMU
emulator which could have led to execution of arbitrary code with privileges of the
QEMU process (bsc#1143797).
- CVE-2019-12067: Fixed a null pointer dereference which could have led to denial of service (bsc#1145652).
- CVE-2019-12155: Fixed a null pointer dereference in QXL VGA card emulator of QEMU which
could have led to denial of service (bsc#1135905).
Patchnames: slessp4-xen-14199
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
4.4 (Medium)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
7.8 (High)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.8 (Medium)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.1 (Medium)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.7 (Medium)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
69 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2019-15890: Fixed a use-after-free in SLiRP networking implementation of QEMU emulator\n which could have led to Denial of Service (bsc#1149813).\n- CVE-2019-12068: Fixed an issue in lsi which could lead to an infinite loop and denial of \n service (bsc#1146874).\n- CVE-2019-14378: Fixed a heap buffer overflow in SLiRp networking implementation of QEMU \n emulator which could have led to execution of arbitrary code with privileges of the \n QEMU process (bsc#1143797).\n- CVE-2019-12067: Fixed a null pointer dereference which could have led to denial of service (bsc#1145652).\n- CVE-2019-12155: Fixed a null pointer dereference in QXL VGA card emulator of QEMU which\n could have led to denial of service (bsc#1135905).\n ",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slessp4-xen-14199",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_14199-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:14199-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-201914199-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:14199-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-October/006052.html"
},
{
"category": "self",
"summary": "SUSE Bug 1126140",
"url": "https://bugzilla.suse.com/1126140"
},
{
"category": "self",
"summary": "SUSE Bug 1126141",
"url": "https://bugzilla.suse.com/1126141"
},
{
"category": "self",
"summary": "SUSE Bug 1126192",
"url": "https://bugzilla.suse.com/1126192"
},
{
"category": "self",
"summary": "SUSE Bug 1126195",
"url": "https://bugzilla.suse.com/1126195"
},
{
"category": "self",
"summary": "SUSE Bug 1126196",
"url": "https://bugzilla.suse.com/1126196"
},
{
"category": "self",
"summary": "SUSE Bug 1126198",
"url": "https://bugzilla.suse.com/1126198"
},
{
"category": "self",
"summary": "SUSE Bug 1126201",
"url": "https://bugzilla.suse.com/1126201"
},
{
"category": "self",
"summary": "SUSE Bug 1127400",
"url": "https://bugzilla.suse.com/1127400"
},
{
"category": "self",
"summary": "SUSE Bug 1135905",
"url": "https://bugzilla.suse.com/1135905"
},
{
"category": "self",
"summary": "SUSE Bug 1143797",
"url": "https://bugzilla.suse.com/1143797"
},
{
"category": "self",
"summary": "SUSE Bug 1145652",
"url": "https://bugzilla.suse.com/1145652"
},
{
"category": "self",
"summary": "SUSE Bug 1146874",
"url": "https://bugzilla.suse.com/1146874"
},
{
"category": "self",
"summary": "SUSE Bug 1149813",
"url": "https://bugzilla.suse.com/1149813"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12067 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12068 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12155 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-14378 page",
"url": "https://www.suse.com/security/cve/CVE-2019-14378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-15890 page",
"url": "https://www.suse.com/security/cve/CVE-2019-15890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17340 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17341 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17342 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17342/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17343 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17344 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17344/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17346 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17347 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17348 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17348/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2019-10-24T11:23:17Z",
"generator": {
"date": "2019-10-24T11:23:17Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:14199-1",
"initial_release_date": "2019-10-24T11:23:17Z",
"revision_history": [
{
"date": "2019-10-24T11:23:17Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"product": {
"name": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"product_id": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586"
}
},
{
"category": "product_version",
"name": "xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"product": {
"name": "xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"product_id": "xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.4.4_40-61.49.1.i586",
"product": {
"name": "xen-libs-4.4.4_40-61.49.1.i586",
"product_id": "xen-libs-4.4.4_40-61.49.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.4.4_40-61.49.1.i586",
"product": {
"name": "xen-tools-domU-4.4.4_40-61.49.1.i586",
"product_id": "xen-tools-domU-4.4.4_40-61.49.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.4.4_40-61.49.1.x86_64",
"product": {
"name": "xen-4.4.4_40-61.49.1.x86_64",
"product_id": "xen-4.4.4_40-61.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.4.4_40-61.49.1.x86_64",
"product": {
"name": "xen-doc-html-4.4.4_40-61.49.1.x86_64",
"product_id": "xen-doc-html-4.4.4_40-61.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"product": {
"name": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"product_id": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.4.4_40-61.49.1.x86_64",
"product": {
"name": "xen-libs-4.4.4_40-61.49.1.x86_64",
"product_id": "xen-libs-4.4.4_40-61.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"product_id": "xen-libs-32bit-4.4.4_40-61.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.4.4_40-61.49.1.x86_64",
"product": {
"name": "xen-tools-4.4.4_40-61.49.1.x86_64",
"product_id": "xen-tools-4.4.4_40-61.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.4.4_40-61.49.1.x86_64",
"product": {
"name": "xen-tools-domU-4.4.4_40-61.49.1.x86_64",
"product_id": "xen-tools-domU-4.4.4_40-61.49.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.4.4_40-61.49.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64"
},
"product_reference": "xen-4.4.4_40-61.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.4.4_40-61.49.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64"
},
"product_reference": "xen-doc-html-4.4.4_40-61.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586"
},
"product_reference": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64"
},
"product_reference": "xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586"
},
"product_reference": "xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.4.4_40-61.49.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586"
},
"product_reference": "xen-libs-4.4.4_40-61.49.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.4.4_40-61.49.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64"
},
"product_reference": "xen-libs-4.4.4_40-61.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.4.4_40-61.49.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.4.4_40-61.49.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64"
},
"product_reference": "xen-tools-4.4.4_40-61.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.4.4_40-61.49.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586"
},
"product_reference": "xen-tools-domU-4.4.4_40-61.49.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.4.4_40-61.49.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
},
"product_reference": "xen-tools-domU-4.4.4_40-61.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-12067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12067"
}
],
"notes": [
{
"category": "general",
"text": "The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NULL dereference) when the command header \u0027ad-\u003ecur_cmd\u0027 is null.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12067",
"url": "https://www.suse.com/security/cve/CVE-2019-12067"
},
{
"category": "external",
"summary": "SUSE Bug 1145642 for CVE-2019-12067",
"url": "https://bugzilla.suse.com/1145642"
},
{
"category": "external",
"summary": "SUSE Bug 1145652 for CVE-2019-12067",
"url": "https://bugzilla.suse.com/1145652"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "low"
}
],
"title": "CVE-2019-12067"
},
{
"cve": "CVE-2019-12068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12068"
}
],
"notes": [
{
"category": "general",
"text": "In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 (fixed), when executing script in lsi_execute_script(), the LSI scsi adapter emulator advances \u0027s-\u003edsp\u0027 index to read next opcode. This can lead to an infinite loop if the next opcode is empty. Move the existing loop exit after 10k iterations so that it covers no-op opcodes as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12068",
"url": "https://www.suse.com/security/cve/CVE-2019-12068"
},
{
"category": "external",
"summary": "SUSE Bug 1146873 for CVE-2019-12068",
"url": "https://bugzilla.suse.com/1146873"
},
{
"category": "external",
"summary": "SUSE Bug 1146874 for CVE-2019-12068",
"url": "https://bugzilla.suse.com/1146874"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-12068",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "moderate"
}
],
"title": "CVE-2019-12068"
},
{
"cve": "CVE-2019-12155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12155"
}
],
"notes": [
{
"category": "general",
"text": "interface_release_resource in hw/display/qxl.c in QEMU 3.1.x through 4.0.0 has a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12155",
"url": "https://www.suse.com/security/cve/CVE-2019-12155"
},
{
"category": "external",
"summary": "SUSE Bug 1135902 for CVE-2019-12155",
"url": "https://bugzilla.suse.com/1135902"
},
{
"category": "external",
"summary": "SUSE Bug 1135905 for CVE-2019-12155",
"url": "https://bugzilla.suse.com/1135905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.8,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "low"
}
],
"title": "CVE-2019-12155"
},
{
"cve": "CVE-2019-14378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-14378"
}
],
"notes": [
{
"category": "general",
"text": "ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-14378",
"url": "https://www.suse.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "SUSE Bug 1143794 for CVE-2019-14378",
"url": "https://bugzilla.suse.com/1143794"
},
{
"category": "external",
"summary": "SUSE Bug 1143797 for CVE-2019-14378",
"url": "https://bugzilla.suse.com/1143797"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-14378",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "important"
}
],
"title": "CVE-2019-14378"
},
{
"cve": "CVE-2019-15890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-15890"
}
],
"notes": [
{
"category": "general",
"text": "libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reass in ip_input.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-15890",
"url": "https://www.suse.com/security/cve/CVE-2019-15890"
},
{
"category": "external",
"summary": "SUSE Bug 1149811 for CVE-2019-15890",
"url": "https://bugzilla.suse.com/1149811"
},
{
"category": "external",
"summary": "SUSE Bug 1149813 for CVE-2019-15890",
"url": "https://bugzilla.suse.com/1149813"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-15890",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "moderate"
}
],
"title": "CVE-2019-15890"
},
{
"cve": "CVE-2019-17340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17340"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 guest OS users to cause a denial of service or gain privileges because grant-table transfer requests are mishandled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17340",
"url": "https://www.suse.com/security/cve/CVE-2019-17340"
},
{
"category": "external",
"summary": "SUSE Bug 1126140 for CVE-2019-17340",
"url": "https://bugzilla.suse.com/1126140"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17340",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "important"
}
],
"title": "CVE-2019-17340"
},
{
"cve": "CVE-2019-17341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17341"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a page-writability race condition during addition of a passed-through PCI device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17341",
"url": "https://www.suse.com/security/cve/CVE-2019-17341"
},
{
"category": "external",
"summary": "SUSE Bug 1126141 for CVE-2019-17341",
"url": "https://bugzilla.suse.com/1126141"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17341",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "important"
}
],
"title": "CVE-2019-17341"
},
{
"cve": "CVE-2019-17342",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17342"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEM_exchange was introduced.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17342",
"url": "https://www.suse.com/security/cve/CVE-2019-17342"
},
{
"category": "external",
"summary": "SUSE Bug 1126192 for CVE-2019-17342",
"url": "https://bugzilla.suse.com/1126192"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17342",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "important"
}
],
"title": "CVE-2019-17342"
},
{
"cve": "CVE-2019-17343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17343"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging incorrect use of the HVM physmap concept for PV domains.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17343",
"url": "https://www.suse.com/security/cve/CVE-2019-17343"
},
{
"category": "external",
"summary": "SUSE Bug 1126195 for CVE-2019-17343",
"url": "https://bugzilla.suse.com/1126195"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17343",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "important"
}
],
"title": "CVE-2019-17343"
},
{
"cve": "CVE-2019-17344",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17344"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service by leveraging a long-running operation that exists to support restartability of PTE updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17344",
"url": "https://www.suse.com/security/cve/CVE-2019-17344"
},
{
"category": "external",
"summary": "SUSE Bug 1126196 for CVE-2019-17344",
"url": "https://bugzilla.suse.com/1126196"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17344",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "moderate"
}
],
"title": "CVE-2019-17344"
},
{
"cve": "CVE-2019-17346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17346"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges because of an incompatibility between Process Context Identifiers (PCID) and TLB flushes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17346",
"url": "https://www.suse.com/security/cve/CVE-2019-17346"
},
{
"category": "external",
"summary": "SUSE Bug 1126198 for CVE-2019-17346",
"url": "https://bugzilla.suse.com/1126198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "moderate"
}
],
"title": "CVE-2019-17346"
},
{
"cve": "CVE-2019-17347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17347"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges because a guest can manipulate its virtualised %cr4 in a way that is incompatible with Linux (and possibly other guest kernels).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17347",
"url": "https://www.suse.com/security/cve/CVE-2019-17347"
},
{
"category": "external",
"summary": "SUSE Bug 1126201 for CVE-2019-17347",
"url": "https://bugzilla.suse.com/1126201"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "important"
}
],
"title": "CVE-2019-17347"
},
{
"cve": "CVE-2019-17348",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17348"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service because of an incompatibility between Process Context Identifiers (PCID) and shadow-pagetable switching.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17348",
"url": "https://www.suse.com/security/cve/CVE-2019-17348"
},
{
"category": "external",
"summary": "SUSE Bug 1127400 for CVE-2019-17348",
"url": "https://bugzilla.suse.com/1127400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-doc-html-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-default-4.4.4_40_3.0.101_108.101-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-kmp-pae-4.4.4_40_3.0.101_108.101-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-32bit-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-libs-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-4.4.4_40-61.49.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.i586",
"SUSE Linux Enterprise Server 11 SP4-LTSS:xen-tools-domU-4.4.4_40-61.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-24T11:23:17Z",
"details": "moderate"
}
],
"title": "CVE-2019-17348"
}
]
}
SUSE-SU-2019:14201-1
Vulnerability from csaf_suse - Published: 2019-10-25 12:28 - Updated: 2019-10-25 12:28Summary
Security update for xen
Severity
Important
Notes
Title of the patch: Security update for xen
Description of the patch: This update for xen fixes the following issues:
- CVE-2019-15890: Fixed a use-after-free in SLiRP networking implementation of QEMU emulator
which could have led to Denial of Service (bsc#1149813).
- CVE-2019-12068: Fixed an issue in lsi which could lead to an infinite loop and denial of
service (bsc#1146874).
- CVE-2019-14378: Fixed a heap buffer overflow in SLiRp networking implementation of QEMU
emulator which could have led to execution of arbitrary code with privileges of the
QEMU process (bsc#1143797).
- CVE-2019-12067: Fixed a null pointer dereference which could have led to denial of service (bsc#1145652).
- CVE-2019-12155: Fixed a null pointer dereference in QXL VGA card emulator of QEMU which
could have led to denial of service (bsc#1135905).
- CVE-2018-20815: Fixed a heap buffer overflow while loading device tree blob (bsc#1130680).
- CVE-2017-10806: Fixed a stack buffer overflow in debug logging (bsc#1047675).
Patchnames: sleposp3-xen-14201
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
low
4.4 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
low
7.8 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
important
5.8 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
important
5.1 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586 | — |
Vendor Fix
|
Threats
Impact
moderate
References
70 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2019-15890: Fixed a use-after-free in SLiRP networking implementation of QEMU emulator\n which could have led to Denial of Service (bsc#1149813).\n- CVE-2019-12068: Fixed an issue in lsi which could lead to an infinite loop and denial of \n service (bsc#1146874).\n- CVE-2019-14378: Fixed a heap buffer overflow in SLiRp networking implementation of QEMU \n emulator which could have led to execution of arbitrary code with privileges of the \n QEMU process (bsc#1143797).\n- CVE-2019-12067: Fixed a null pointer dereference which could have led to denial of service (bsc#1145652).\n- CVE-2019-12155: Fixed a null pointer dereference in QXL VGA card emulator of QEMU which\n could have led to denial of service (bsc#1135905).\n- CVE-2018-20815: Fixed a heap buffer overflow while loading device tree blob (bsc#1130680).\n- CVE-2017-10806: Fixed a stack buffer overflow in debug logging (bsc#1047675).\n ",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sleposp3-xen-14201",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_14201-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:14201-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-201914201-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:14201-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-October/006057.html"
},
{
"category": "self",
"summary": "SUSE Bug 1047675",
"url": "https://bugzilla.suse.com/1047675"
},
{
"category": "self",
"summary": "SUSE Bug 1126140",
"url": "https://bugzilla.suse.com/1126140"
},
{
"category": "self",
"summary": "SUSE Bug 1126141",
"url": "https://bugzilla.suse.com/1126141"
},
{
"category": "self",
"summary": "SUSE Bug 1126192",
"url": "https://bugzilla.suse.com/1126192"
},
{
"category": "self",
"summary": "SUSE Bug 1126195",
"url": "https://bugzilla.suse.com/1126195"
},
{
"category": "self",
"summary": "SUSE Bug 1126196",
"url": "https://bugzilla.suse.com/1126196"
},
{
"category": "self",
"summary": "SUSE Bug 1130680",
"url": "https://bugzilla.suse.com/1130680"
},
{
"category": "self",
"summary": "SUSE Bug 1135905",
"url": "https://bugzilla.suse.com/1135905"
},
{
"category": "self",
"summary": "SUSE Bug 1143797",
"url": "https://bugzilla.suse.com/1143797"
},
{
"category": "self",
"summary": "SUSE Bug 1145652",
"url": "https://bugzilla.suse.com/1145652"
},
{
"category": "self",
"summary": "SUSE Bug 1146874",
"url": "https://bugzilla.suse.com/1146874"
},
{
"category": "self",
"summary": "SUSE Bug 1149813",
"url": "https://bugzilla.suse.com/1149813"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-10806 page",
"url": "https://www.suse.com/security/cve/CVE-2017-10806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-20815 page",
"url": "https://www.suse.com/security/cve/CVE-2018-20815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12067 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12068 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12155 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-14378 page",
"url": "https://www.suse.com/security/cve/CVE-2019-14378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-15890 page",
"url": "https://www.suse.com/security/cve/CVE-2019-15890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17340 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17341 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17342 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17342/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17343 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17344 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17344/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2019-10-25T12:28:21Z",
"generator": {
"date": "2019-10-25T12:28:21Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:14201-1",
"initial_release_date": "2019-10-25T12:28:21Z",
"revision_history": [
{
"date": "2019-10-25T12:28:21Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"product": {
"name": "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"product_id": "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586"
}
},
{
"category": "product_version",
"name": "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"product": {
"name": "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"product_id": "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.2.5_21-45.33.1.i586",
"product": {
"name": "xen-libs-4.2.5_21-45.33.1.i586",
"product_id": "xen-libs-4.2.5_21-45.33.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.2.5_21-45.33.1.i586",
"product": {
"name": "xen-tools-domU-4.2.5_21-45.33.1.i586",
"product_id": "xen-tools-domU-4.2.5_21-45.33.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Point of Sale 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-pos:11:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586"
},
"product_reference": "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586"
},
"product_reference": "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.2.5_21-45.33.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586"
},
"product_reference": "xen-libs-4.2.5_21-45.33.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.2.5_21-45.33.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
},
"product_reference": "xen-tools-domU-4.2.5_21-45.33.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-10806"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in hw/usb/redirect.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (QEMU process crash) via vectors related to logging debug messages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-10806",
"url": "https://www.suse.com/security/cve/CVE-2017-10806"
},
{
"category": "external",
"summary": "SUSE Bug 1047674 for CVE-2017-10806",
"url": "https://bugzilla.suse.com/1047674"
},
{
"category": "external",
"summary": "SUSE Bug 1047675 for CVE-2017-10806",
"url": "https://bugzilla.suse.com/1047675"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-10806"
},
{
"cve": "CVE-2018-20815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-20815"
}
],
"notes": [
{
"category": "general",
"text": "In QEMU 3.1.0, load_device_tree in device_tree.c calls the deprecated load_image function, which has a buffer overflow risk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-20815",
"url": "https://www.suse.com/security/cve/CVE-2018-20815"
},
{
"category": "external",
"summary": "SUSE Bug 1118900 for CVE-2018-20815",
"url": "https://bugzilla.suse.com/1118900"
},
{
"category": "external",
"summary": "SUSE Bug 1130675 for CVE-2018-20815",
"url": "https://bugzilla.suse.com/1130675"
},
{
"category": "external",
"summary": "SUSE Bug 1130680 for CVE-2018-20815",
"url": "https://bugzilla.suse.com/1130680"
},
{
"category": "external",
"summary": "SUSE Bug 1138043 for CVE-2018-20815",
"url": "https://bugzilla.suse.com/1138043"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2018-20815",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "moderate"
}
],
"title": "CVE-2018-20815"
},
{
"cve": "CVE-2019-12067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12067"
}
],
"notes": [
{
"category": "general",
"text": "The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NULL dereference) when the command header \u0027ad-\u003ecur_cmd\u0027 is null.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12067",
"url": "https://www.suse.com/security/cve/CVE-2019-12067"
},
{
"category": "external",
"summary": "SUSE Bug 1145642 for CVE-2019-12067",
"url": "https://bugzilla.suse.com/1145642"
},
{
"category": "external",
"summary": "SUSE Bug 1145652 for CVE-2019-12067",
"url": "https://bugzilla.suse.com/1145652"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "low"
}
],
"title": "CVE-2019-12067"
},
{
"cve": "CVE-2019-12068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12068"
}
],
"notes": [
{
"category": "general",
"text": "In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 (fixed), when executing script in lsi_execute_script(), the LSI scsi adapter emulator advances \u0027s-\u003edsp\u0027 index to read next opcode. This can lead to an infinite loop if the next opcode is empty. Move the existing loop exit after 10k iterations so that it covers no-op opcodes as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12068",
"url": "https://www.suse.com/security/cve/CVE-2019-12068"
},
{
"category": "external",
"summary": "SUSE Bug 1146873 for CVE-2019-12068",
"url": "https://bugzilla.suse.com/1146873"
},
{
"category": "external",
"summary": "SUSE Bug 1146874 for CVE-2019-12068",
"url": "https://bugzilla.suse.com/1146874"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-12068",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "moderate"
}
],
"title": "CVE-2019-12068"
},
{
"cve": "CVE-2019-12155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12155"
}
],
"notes": [
{
"category": "general",
"text": "interface_release_resource in hw/display/qxl.c in QEMU 3.1.x through 4.0.0 has a NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12155",
"url": "https://www.suse.com/security/cve/CVE-2019-12155"
},
{
"category": "external",
"summary": "SUSE Bug 1135902 for CVE-2019-12155",
"url": "https://bugzilla.suse.com/1135902"
},
{
"category": "external",
"summary": "SUSE Bug 1135905 for CVE-2019-12155",
"url": "https://bugzilla.suse.com/1135905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.8,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "low"
}
],
"title": "CVE-2019-12155"
},
{
"cve": "CVE-2019-14378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-14378"
}
],
"notes": [
{
"category": "general",
"text": "ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-14378",
"url": "https://www.suse.com/security/cve/CVE-2019-14378"
},
{
"category": "external",
"summary": "SUSE Bug 1143794 for CVE-2019-14378",
"url": "https://bugzilla.suse.com/1143794"
},
{
"category": "external",
"summary": "SUSE Bug 1143797 for CVE-2019-14378",
"url": "https://bugzilla.suse.com/1143797"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-14378",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "important"
}
],
"title": "CVE-2019-14378"
},
{
"cve": "CVE-2019-15890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-15890"
}
],
"notes": [
{
"category": "general",
"text": "libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reass in ip_input.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-15890",
"url": "https://www.suse.com/security/cve/CVE-2019-15890"
},
{
"category": "external",
"summary": "SUSE Bug 1149811 for CVE-2019-15890",
"url": "https://bugzilla.suse.com/1149811"
},
{
"category": "external",
"summary": "SUSE Bug 1149813 for CVE-2019-15890",
"url": "https://bugzilla.suse.com/1149813"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-15890",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "moderate"
}
],
"title": "CVE-2019-15890"
},
{
"cve": "CVE-2019-17340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17340"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 guest OS users to cause a denial of service or gain privileges because grant-table transfer requests are mishandled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17340",
"url": "https://www.suse.com/security/cve/CVE-2019-17340"
},
{
"category": "external",
"summary": "SUSE Bug 1126140 for CVE-2019-17340",
"url": "https://bugzilla.suse.com/1126140"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17340",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "important"
}
],
"title": "CVE-2019-17340"
},
{
"cve": "CVE-2019-17341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17341"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a page-writability race condition during addition of a passed-through PCI device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17341",
"url": "https://www.suse.com/security/cve/CVE-2019-17341"
},
{
"category": "external",
"summary": "SUSE Bug 1126141 for CVE-2019-17341",
"url": "https://bugzilla.suse.com/1126141"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17341",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "important"
}
],
"title": "CVE-2019-17341"
},
{
"cve": "CVE-2019-17342",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17342"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEM_exchange was introduced.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17342",
"url": "https://www.suse.com/security/cve/CVE-2019-17342"
},
{
"category": "external",
"summary": "SUSE Bug 1126192 for CVE-2019-17342",
"url": "https://bugzilla.suse.com/1126192"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17342",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "important"
}
],
"title": "CVE-2019-17342"
},
{
"cve": "CVE-2019-17343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17343"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging incorrect use of the HVM physmap concept for PV domains.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17343",
"url": "https://www.suse.com/security/cve/CVE-2019-17343"
},
{
"category": "external",
"summary": "SUSE Bug 1126195 for CVE-2019-17343",
"url": "https://bugzilla.suse.com/1126195"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17343",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "important"
}
],
"title": "CVE-2019-17343"
},
{
"cve": "CVE-2019-17344",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17344"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service by leveraging a long-running operation that exists to support restartability of PTE updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17344",
"url": "https://www.suse.com/security/cve/CVE-2019-17344"
},
{
"category": "external",
"summary": "SUSE Bug 1126196 for CVE-2019-17344",
"url": "https://bugzilla.suse.com/1126196"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2019-17344",
"url": "https://bugzilla.suse.com/1178658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.59-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.33.1.i586",
"SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.33.1.i586"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T12:28:21Z",
"details": "moderate"
}
],
"title": "CVE-2019-17344"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…