Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2019:1274-1
HistoryApr 25, 2019 - 12:00 a.m.

Security update for qemu (important)

2019-04-2500:00:00
lists.opensuse.org
105

0.011 Low

EPSS

Percentile

84.3%

JSON

An update that solves four vulnerabilities and has two
fixes is now available.

Description:

This update for qemu fixes the following issues:

Security issues fixed:

  • CVE-2019-9824: Fixed information leak in slirp (bsc#1129622).
  • CVE-2019-8934: Added method to specify whether or not to expose certain
    ppc64 hostinformation (bsc#1126455).
  • CVE-2019-3812: Fixed Out-of-bounds memory access and information leak in
    virtual monitor interface (bsc#1125721).
  • CVE-2018-20815: Fixed a denial of service possibility in device tree
    processing (bsc#1130675).

Non-security issue fixed:

  • Backported Skylake-Server vcpu model support from qemu v2.11
    (FATE#327261 bsc#1131955).
  • Added ability to set virtqueue size using virtqueue_size parameter
    (FATE#327255 bsc#1118900).

This update was imported from the SUSE:SLE-12-SP3:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

  • openSUSE Leap 42.3:

    zypper in -t patch openSUSE-2019-1274=1

OSVersionArchitecturePackageVersionFilename
openSUSE Leap42.3i586< - openSUSE Leap 42.3 (i586 x86_64):- openSUSE Leap 42.3 (i586 x86_64):.i586.rpm
openSUSE Leap42.3x86_64< - openSUSE Leap 42.3 (i586 x86_64):- openSUSE Leap 42.3 (i586 x86_64):.x86_64.rpm
openSUSE Leap42.3noarch< - openSUSE Leap 42.3 (noarch):- openSUSE Leap 42.3 (noarch):.noarch.rpm
openSUSE Leap42.3x86_64< - openSUSE Leap 42.3 (x86_64):- openSUSE Leap 42.3 (x86_64):.x86_64.rpm

Related

openvas 40
nessus 74
oraclelinux 9
gentoo 1
suse 3
amazon 4
osv 9
debian 3
ubuntucve 4
veracode 3
redhatcve 4
nvd 4
redhat 12
cvelist 4
prion 4
debiancve 4
cve 4
centos 2
ibm 1
f5 1
ubuntu 2
fedora 5
rocky 1
almalinux 1
openvas
openvas
openSUSE: Security Advisory for qemu (openSUSE-SU-2019:1274-1)
2019-04-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:1238-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for qemu (openSUSE-SU-2019:1405-1)
2019-05-18 00:00:00
nessus
nessus
openSUSE Security Update : qemu (openSUSE-2019-1274)
2019-04-26 00:00:00
GLSA-201904-25 : QEMU: Multiple vulnerabilities
2019-04-25 00:00:00
openSUSE Security Update : qemu (openSUSE-2019-1405) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)
2019-05-21 00:00:00
oraclelinux
oraclelinux
qemu security update
2019-05-14 00:00:00
qemu-kvm security update
2019-07-02 00:00:00
qemu security update
2019-05-14 00:00:00
gentoo
gentoo
QEMU: Multiple vulnerabilities
2019-04-24 00:00:00
suse
suse
Security update for qemu (important)
2019-05-17 00:00:00
Security update for xen (important)
2019-05-20 00:00:00
Security update for xen (important)
2019-04-17 00:00:00
amazon
amazon
Important: qemu
2019-07-18 17:45:00
Important: qemu
2020-07-21 16:34:00
Important: qemu-kvm
2020-07-27 23:58:00
osv
osv
qemu - security update
2019-05-09 00:00:00
CVE-2018-20815
2019-05-31 22:29:00
CVE-2019-8934
2019-03-21 16:01:14
debian
debian
[SECURITY] [DLA 1781-1] qemu security update
2019-05-09 18:42:13
[SECURITY] [DSA 4506-1] qemu security update
2019-08-24 09:55:59
[SECURITY] [DSA 4454-1] qemu security update
2019-05-30 18:06:19
ubuntucve
ubuntucve
CVE-2018-20815
2018-12-31 00:00:00
CVE-2019-9824
2019-03-19 00:00:00
CVE-2019-8934
2019-03-21 00:00:00
veracode
veracode
Buffer Overflow
2019-07-08 00:07:31
Information Disclosure
2019-07-08 00:07:09
Information Disclosure
2020-09-21 06:26:02
redhatcve
redhatcve
CVE-2018-20815
2019-10-10 05:41:46
CVE-2019-8934
2020-04-03 19:57:22
CVE-2019-9824
2020-03-31 20:00:57
nvd
nvd
CVE-2018-20815
2019-05-31 22:29:00
CVE-2019-8934
2019-03-21 16:01:14
CVE-2019-9824
2019-06-03 21:29:00
redhat
redhat
(RHSA-2019:1881) Important: qemu-kvm-ma security and bug fix update
2019-07-29 12:48:27
(RHSA-2019:1723) Important: qemu-kvm-rhev security update
2019-07-09 20:41:09
(RHSA-2019:1667) Important: qemu-kvm-rhev security update
2019-07-02 16:16:14
cvelist
cvelist
CVE-2018-20815
2019-05-31 21:40:01
CVE-2019-8934
2019-03-17 19:11:30
CVE-2019-9824
2019-06-03 20:50:39
prion
prion
Buffer overflow
2019-05-31 22:29:00
Information disclosure
2019-03-21 16:01:00
Information disclosure
2019-06-03 21:29:00
debiancve
debiancve
CVE-2018-20815
2019-05-31 22:29:00
CVE-2019-8934
2019-03-21 16:01:14
CVE-2019-9824
2019-06-03 21:29:00
cve
cve
CVE-2018-20815
2019-05-31 22:29:00
CVE-2019-8934
2019-03-21 16:01:14
CVE-2019-9824
2019-06-03 21:29:00
centos
centos
qemu security update
2019-07-03 17:01:43
qemu security update
2019-08-30 04:04:53
ibm
ibm
Security Bulletin: IBM WebSphere Cast Iron Solution & App Connect Professional is affected by Open Source vulnerabilities
2020-01-10 08:06:20
f5
f5
K29103455 : QEMU 3.0.0 vulnerability CVE-2019-9824
2020-12-19 00:00:00
ubuntu
ubuntu
QEMU update
2019-05-14 00:00:00
QEMU vulnerabilities
2019-03-27 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: qemu-3.1.0-9.fc30
2019-07-09 00:56:39
[SECURITY] Fedora 30 Update: qemu-3.1.0-6.fc30
2019-03-28 17:41:26
[SECURITY] Fedora 29 Update: qemu-3.0.1-4.fc29
2019-07-09 02:25:09
rocky
rocky
virt:rhel security, bug fix, and enhancement update
2019-11-05 17:33:34
almalinux
almalinux
Low: virt:rhel security, bug fix, and enhancement update
2019-11-05 17:33:34

0.011 Low

EPSS

Percentile

84.3%

JSON
Related for OPENSUSE-SU-2019:1274-1
openvas40nessus74oraclelinux9gentoo1suse3amazon4osv9debian3ubuntucve4veracode3redhatcve4nvd4redhat12cvelist4prion4debiancve4cve4centos2ibm1f51ubuntu2fedora5rocky1almalinux1