This update for qemu fixes the following issues: - CVE-2021-3409: Fixed an incomplete fix for CVE-2020-17380 and CVE-2020-25085 in sdhi controller. - CVE-2021-4206: Fixed an integer overflow in cursor_alloc which can lead to heap buffer overflow. - CVE-2021-4207: Fixed a double fetch in qxl_cursor ehich can lead to heap buffer overflow. - CVE-2022-0216: Fixed a use after free issue found in hw/scsi/lsi53c895a.c. - CVE-2022-35414: Fixed an uninitialized read during address translation that leads to a crash. - CVE-2021-3507: Fixed a heap buffer overflow in DMA read data transfers. - CVE-2020-17380: Fixed a heap buffer overflow in sdhci_sdma_transfer_multi_blocks