Overview

File _patchinfo of Package patchinfo.20749

<patchinfo incident="20749">
  <issue tracker="bnc" id="1186012">VUL-1: CVE-2021-3527: qemu,kvm: QEMU: usb: unbounded stack allocation in usbredir</issue>
  <issue tracker="bnc" id="1180433">VUL-0: CVE-2020-35504: kvm,xen,qemu: NULL pointer dereference in scsi_req_continue() in hw/scsi/scsi-bus.c</issue>
  <issue tracker="bnc" id="1180434">VUL-0: CVE-2020-35505: qemu,xen,kvm: NULL pointer dereference in do_busid_cmd() in hw/scsi/esp.c</issue>
  <issue tracker="bnc" id="1180432">VUL-0: CVE-2020-35503: qemu,kvm,xen: NULL pointer dereference issue in megasas-gen2 host bus adapter</issue>
  <issue tracker="bnc" id="1189145">VUL-0: CVE-2021-3682: kvm,qemu: usbredir: free call on invalid pointer in bufp_alloc()</issue>
  <issue tracker="bnc" id="1182651">VUL-1: CVE-2021-20255: qemu,kvm: eepro100: stack overflow via infinite recursion</issue>
  <issue tracker="bnc" id="1180435">VUL-0: CVE-2020-35506: kvm,qemu,xen: use after free vulnerability in esp_do_dma() in hw/scsi/esp.c</issue>
  <issue tracker="bnc" id="1189702">VUL-0: CVE-2021-3713: kvm,qemu: out-of-bounds write in UAS (USB Attached SCSI) device emulation</issue>
  <issue tracker="bnc" id="1189938">VUL-0: CVE-2021-3748: qemu: virtio-net: heap use-after-free in virtio_net_receive_rcu</issue>
  <issue tracker="cve" id="2021-3748"/>
  <issue tracker="cve" id="2021-3713"/>
  <issue tracker="cve" id="2021-20255"/>
  <issue tracker="cve" id="2021-3682"/>
  <issue tracker="cve" id="2020-35506"/>
  <issue tracker="cve" id="2020-35503"/>
  <issue tracker="cve" id="2020-35504"/>
  <issue tracker="cve" id="2020-35505"/>
  <issue tracker="cve" id="2021-3527"/>
  <packager>jziviani</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for qemu</summary>
  <description>This update for qemu fixes the following issues:

Security issues fixed:

- Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938, CVE-2021-3748)
- Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702, CVE-2021-3713)
- usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682)
- NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506)
- NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503)
- eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255)
- usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places