File _patchinfo of Package patchinfo.20395

<patchinfo incident="20395">
  <issue tracker="bnc" id="1187529">VUL-0: CVE-2021-3611: qemu: intel-hda: segmentation fault due to stack overflow</issue>
  <issue tracker="bnc" id="1187364">VUL-1: CVE-2021-3592: qemu,kvm: slirp: invalid pointer initialization may lead to information disclosure (bootp)</issue>
  <issue tracker="bnc" id="1187365">VUL-1: CVE-2021-3593: qemu: slirp: invalid pointer initialization may lead to information disclosure (udp6)</issue>
  <issue tracker="bnc" id="1187367">VUL-1: CVE-2021-3594: qemu,kvm: slirp: invalid pointer initialization may lead to information disclosure (udp)</issue>
  <issue tracker="bnc" id="1187366">VUL-1: CVE-2021-3595: qemu: slirp: invalid pointer initialization may lead to information disclosure (tftp)</issue>
  <issue tracker="cve" id="2021-3611"/>
  <issue tracker="cve" id="2021-3593"/>
  <issue tracker="cve" id="2021-3592"/>
  <issue tracker="cve" id="2021-3594"/>
  <issue tracker="cve" id="2021-3595"/>
  <packager>jziviani</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for qemu</summary>
  <description>This update for qemu fixes the following issues:

Security issues fixed:

- CVE-2021-3595: Fixed slirp: invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366)
- CVE-2021-3592: Fix for slirp: invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364)
- CVE-2021-3594: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367)
- CVE-2021-3593: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp6) (bsc#1187365)
- CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529)

</description>
</patchinfo>