File _patchinfo of Package patchinfo.24555

<patchinfo incident="24555">
  <issue tracker="bnc" id="1198035">VUL-0: CVE-2021-4206: qemu,kvm: integer overflow in cursor_alloc() can lead to heap buffer overflow</issue>
  <issue tracker="bnc" id="1199018">hotplug interface fail in KVM guest with "no MMIO resource"</issue>
  <issue tracker="bnc" id="1198711">VUL-0: CVE-2022-26353: qemu,kvm: QEMU: virtio-net: map leaking on error during receive</issue>
  <issue tracker="bnc" id="1199625">GCC 12: qemu fails to build</issue>
  <issue tracker="bnc" id="1198037">VUL-0: CVE-2021-4207: qemu,kvm: double fetch in qxl_cursor() can lead to heap buffer overflow</issue>
  <issue tracker="bnc" id="1198712">VUL-1: CVE-2022-26354: kvm,qemu: QEMU: vhost-vsock: missing virtqueue detach on error can lead to memory leak</issue>
  <issue tracker="bnc" id="1197084"/>
  <issue tracker="bnc" id="1199924"/>
  <issue tracker="bnc" id="1199015"/>
  <issue tracker="cve" id="2022-26354"/>
  <issue tracker="cve" id="2021-4206"/>
  <issue tracker="cve" id="2022-26353"/>
  <issue tracker="cve" id="2021-4207"/>
  <packager>dfaggioli</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for qemu</summary>
  <description>This update for qemu fixes the following issues:

- CVE-2022-26354: Fixed missing virtqueue detach on error can lead to memory leak (bsc#1198712)
- CVE-2022-26353: Fixed map leaking on error during receive (bsc#1198711)
- CVE-2021-4207: Fixed double fetch in qxl_cursor() can lead to heap buffer overflow (bsc#1198037)
- CVE-2021-4206: Fixed integer overflow in cursor_alloc() can lead to heap buffer overflow (bsc#1198035)
</description>
</patchinfo>