Overview

File _patchinfo of Package patchinfo.20097

<patchinfo incident="20097">
  <issue tracker="cve" id="2021-3544"/>
  <issue tracker="cve" id="2021-3546"/>
  <issue tracker="cve" id="2021-3545"/>
  <issue tracker="bnc" id="1186010">VUL-0: CVE-2021-3544: qemu,kvm: QEMU: vhost-user-gpu: multiple memory leaks</issue>
  <issue tracker="bnc" id="1185990">VUL-0: CVE-2021-3545: qemu,kvm: QEMU: vhost-user-gpu: information disclosure due to uninitialized memory read</issue>
  <issue tracker="bnc" id="1185981">VUL-0: CVE-2021-3546: qemu,kvm: QEMU: vhost-user-gpu: out-of-bounds write in virgl_cmd_get_capset()</issue>
  <packager>jziviani</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for qemu</summary>
  <description>This update for qemu fixes the following issues:

- CVE-2021-3546: Fixed out-of-bounds write in virgl_cmd_get_capset (bsc#1185981).
- CVE-2021-3544: Fixed memory leaks found in the virtio vhost-user GPU device (bsc#1186010).
- CVE-2021-3545: Fixed information disclosure due to uninitialized memory read (bsc#1185990).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places