File _patchinfo of Package patchinfo.29978
<patchinfo incident="29978"> <issue tracker="bnc" id="1179993">[XEN][hvm]HDIO_GET_IDENTITY failed when install an SLE11SP4 hvm domU</issue> <issue tracker="bnc" id="1213414">VUL-0: CVE-2023-3301: qemu: vhost-vdpa: do not cleanup the vdpa/vhost-net structures if peer nic is present</issue> <issue tracker="bnc" id="1207205">VUL-0: CVE-2023-0330: kvm,qemu: lsi53c895a: DMA reentrancy issue leads to stack overflow</issue> <issue tracker="bnc" id="1181740">SLES11SP4 Guest don´t run on XEN SLES15SP2 [ ref:_00D1igLOd._5001iXgV9M:ref ]</issue> <issue tracker="bnc" id="1213001">VUL-0: CVE-2023-3255: qemu,kvm: VNC: infinite loop in inflate_buffer() leads to denial of service</issue> <issue tracker="bnc" id="1212968">VUL-0: CVE-2023-2861: qemu,kvm: 9pfs: improper access control on special files</issue> <issue tracker="cve" id="2023-3255"/> <issue tracker="cve" id="2023-0330"/> <issue tracker="cve" id="2023-2861"/> <issue tracker="cve" id="2023-3301"/> <packager>dfaggioli</packager> <rating>important</rating> <category>security</category> <summary>Security update for qemu</summary> <description>This update for qemu fixes the following issues: - CVE-2023-3301: Fixed incorrect cleanup of the vdpa/vhost-net structures if peer nic is present (bsc#1213414). - CVE-2023-0330: Fixed reentrancy issues in the LSI controller (bsc#1207205). - CVE-2023-2861: Fixed opening special files in 9pfs (bsc#1212968). - CVE-2023-3255: Fixed infinite loop in inflate_buffer() leads to denial of service (bsc#1213001). Bugfixes: - hw/ide/piix: properly initialize the BMIBA register (bsc#bsc#1179993) - Fixed issue where Guest did not run on XEN SLES15SP2 (bsc#1181740). </description> </patchinfo>
