SUSE-SU-2021:1242-1 -- SLES qemu, qemu-guest-agentID: oval:org.secpod.oval:def:89044348 | Date: (C)2021-05-28 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for qemu fixes the following issues: - Fix OOB access in sm501 device emulation - Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation - Fix use-after-free in usb xhci packet handling - Fix use-after-free in usb iehci packet handling - Fix infinite loop in usb hcd-ohci emulation - Fix OOB access in usb hcd-ohci emulation - Fix guest triggerable assert in shared network handling code - Fix infinite loop in e1000e device emulation - Fix OOB access in atapi emulation - Fix heap overflow in MSIx emulation - Fix null pointer deref. in mmio ops - Fix infinite loop in e1000 device emulation - Fix OOB access in rtl8139 NIC emulation - Fix OOB access in other NIC emulations - Fix OOB access in SLIRP ARP/NCSI packet processing - Fix null pointer dereference possibility in MegaRAID SAS 8708EM2 emulation - Fix issue where s390 guest fails to find zipl boot menu index - Fix OOB access in iscsi - Fix OOB access in vmxnet3 emulation - Fix package scripts to not use hard coded paths for temporary working directories and log files - Fix potential privilege escalation in virtfs - Apply fixes to qemu scsi passthrough with respect to timeout and error conditions, including using more correct status codes. - Fix OOB access in ARM interrupt handling - Make note that this patch previously included addresses - Tweaks to spec file for better formatting, and remove not needed BuildRequires for e2fsprogs-devel and libpcap-devel - Fix vfio-pci device on s390 enters error state - Fix PCI devices are unavailable after a subsystem reset
Platform: |
SUSE Linux Enterprise Server 12 SP5 |
Product: |
qemu |
qemu-guest-agent |