SUSE-SU-2021:14704-1 -- SLES kvmID: oval:org.secpod.oval:def:89044183 | Date: (C)2021-04-23 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for kvm fixes the following issues: - Fix OOB read and write due to integer overflow in sm501_2d_operation in hw/display/sm501.c - Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation - Fix use-after-free in usb xhci packet handling - Fix use-after-free in usb ehci packet handling - Fix OOB access in usb hcd-ohci emulation - Fix infinite loop in usb hcd-ohci emulation - Fix OOB access in atapi emulation - Fix DoS in e1000 emulated device - Fix OOB access in SLIRP ARP packet processing - Fix OOB access while processing USB packets - Fix potential privilege escalation in virtfs - Fix package scripts to not use hard coded paths for temporary working directories and log files - Fix OOB access possibility in ES1370 audio device emulation - Fix OOB access in ROM loading
Platform: |
SUSE Linux Enterprise Server 11 SP4 |