Test ID:	1.3.6.1.4.1.25623.1.0.852883
Category:	SuSE Local Security Checks
Title:	openSUSE: Security Advisory for qemu (openSUSE-SU-2019:2510-1)
Summary:	The remote host is missing an update for the 'qemu'; package(s) announced via the openSUSE-SU-2019:2510-1 advisory.
Description:	Summary: The remote host is missing an update for the 'qemu' package(s) announced via the openSUSE-SU-2019:2510-1 advisory. Vulnerability Insight: This update for qemu fixes the following issues: qemu was updated to v3.1.1.1, a stable, bug-fix-only release, which includes 2 fixes we already carry, as well as one additional use- after-free fix in slirp. (CVE-2018-20126 bsc#1119991, CVE-2019-14378 bsc#1143794, and CVE-2019-15890 bsc#1149811 respectively) Security issues fixed: - CVE-2019-12068: Fixed potential DOS in lsi scsi controller emulation (bsc#1146873) - CVE-2019-11135: Expose taa-no 'feature', indicating CPU does not have the TSX Async Abort vulnerability. (bsc#1152506) - CVE-2018-12207: Expose pschange-mc-no 'feature', indicating CPU does not have the page size change machine check vulnerability (bsc#1117665) Other issues fixed: - Change how this bug gets fixed (bsc#1144087) - Disable file locking in the Xen PV disk backend to avoid locking issues with PV domUs during migration. The issues triggered by the locking can not be properly handled in libxl. The locking introduced in qemu-2.10 was removed again in qemu-4.0. (bsc#1079730, bsc#1098403, bsc#1111025, bsc#1145427, bsc#1145774) - Feature support for vfio-ccw dasd ipl (bsc#1145379 jira-SLE-6132) - Additional hardware instruction support for s390, also update qemu linux headers to 5.2-rc1 (bsc#1145436 jira-SLE-6237) This update was imported from the SUSE:SLE-15-SP1:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or 'zypper patch'. Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2019-2510=1 Affected Software/OS: 'qemu' package(s) on openSUSE Leap 15.1. Solution: Please install the updated package(s). CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-12207 Bugtraq: 20200114 [SECURITY] [DSA 4602-1] xen security update (Google Search) https://seclists.org/bugtraq/2020/Jan/21 https://support.f5.com/csp/article/K17269881?utm_source=f5support&utm_medium=RSS Debian Security Information: DSA-4602 (Google Search) https://www.debian.org/security/2020/dsa-4602 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/ https://security.gentoo.org/glsa/202003-56 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00210.html https://www.oracle.com/security-alerts/cpujul2020.html RedHat Security Advisories: RHSA-2019:3916 https://access.redhat.com/errata/RHSA-2019:3916 RedHat Security Advisories: RHSA-2019:3936 https://access.redhat.com/errata/RHSA-2019:3936 RedHat Security Advisories: RHSA-2019:3941 https://access.redhat.com/errata/RHSA-2019:3941 RedHat Security Advisories: RHSA-2020:0026 https://access.redhat.com/errata/RHSA-2020:0026 RedHat Security Advisories: RHSA-2020:0028 https://access.redhat.com/errata/RHSA-2020:0028 RedHat Security Advisories: RHSA-2020:0204 https://access.redhat.com/errata/RHSA-2020:0204 SuSE Security Announcement: openSUSE-SU-2019:2710 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00042.html https://usn.ubuntu.com/4186-2/ Common Vulnerability Exposure (CVE) ID: CVE-2018-20126 BugTraq ID: 106298 http://www.securityfocus.com/bid/106298 http://www.openwall.com/lists/oss-security/2018/12/19/4 https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02824.html SuSE Security Announcement: openSUSE-SU-2019:2505 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html SuSE Security Announcement: openSUSE-SU-2019:2510 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html https://usn.ubuntu.com/3923-1/ Common Vulnerability Exposure (CVE) ID: CVE-2019-11135 Bugtraq: 20191118 [slackware-security] Slackware 14.2 kernel (SSA:2019-320-01) (Google Search) https://seclists.org/bugtraq/2019/Nov/26 Bugtraq: 20191216 [SECURITY] [DSA 4565-2] intel-microcode security update (Google Search) https://seclists.org/bugtraq/2019/Dec/28 https://kc.mcafee.com/corporate/index?page=content&id=SB10306 https://support.f5.com/csp/article/K02912734?utm_source=f5support&utm_medium=RSS https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03968en_us http://packetstormsecurity.com/files/155375/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00270.html https://www.oracle.com/security-alerts/cpujan2021.html https://lists.debian.org/debian-lts-announce/2019/12/msg00035.html http://www.openwall.com/lists/oss-security/2019/12/10/3 http://www.openwall.com/lists/oss-security/2019/12/10/4 http://www.openwall.com/lists/oss-security/2019/12/11/1 RedHat Security Advisories: RHSA-2020:0279 https://access.redhat.com/errata/RHSA-2020:0279 RedHat Security Advisories: RHSA-2020:0366 https://access.redhat.com/errata/RHSA-2020:0366 RedHat Security Advisories: RHSA-2020:0555 https://access.redhat.com/errata/RHSA-2020:0555 RedHat Security Advisories: RHSA-2020:0666 https://access.redhat.com/errata/RHSA-2020:0666 RedHat Security Advisories: RHSA-2020:0730 https://access.redhat.com/errata/RHSA-2020:0730 SuSE Security Announcement: openSUSE-SU-2019:2527 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00046.html SuSE Security Announcement: openSUSE-SU-2019:2528 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00045.html Common Vulnerability Exposure (CVE) ID: CVE-2019-12068 Debian Security Information: DSA-4665 (Google Search) https://www.debian.org/security/2020/dsa-4665 https://git.qemu.org/?p=qemu.git;a=commit;h=de594e47659029316bbf9391efb79da0a1a08e08 https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html https://security-tracker.debian.org/tracker/CVE-2019-12068 https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html https://usn.ubuntu.com/4191-1/ https://usn.ubuntu.com/4191-2/ Common Vulnerability Exposure (CVE) ID: CVE-2019-14378 Bugtraq: 20190825 [SECURITY] [DSA 4506-1] qemu security update (Google Search) https://seclists.org/bugtraq/2019/Aug/41 Bugtraq: 20190902 [SECURITY] [DSA 4512-1] qemu security update (Google Search) https://seclists.org/bugtraq/2019/Sep/3 Debian Security Information: DSA-4506 (Google Search) https://www.debian.org/security/2019/dsa-4506 Debian Security Information: DSA-4512 (Google Search) https://www.debian.org/security/2019/dsa-4512 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPLHB2AN663OXAWUQURF7J2X5LHD4VD3/ http://packetstormsecurity.com/files/154269/QEMU-Denial-Of-Service.html https://blog.bi0s.in/2019/08/24/Pwn/VM-Escape/2019-07-29-qemu-vm-escape-cve-2019-14378/ https://gitlab.freedesktop.org/slirp/libslirp/commit/126c04acbabd7ad32c2b018fe10dfac2a3bc1210 https://news.ycombinator.com/item?id=20799010 http://www.openwall.com/lists/oss-security/2019/08/01/2 RedHat Security Advisories: RHSA-2019:3179 https://access.redhat.com/errata/RHSA-2019:3179 RedHat Security Advisories: RHSA-2019:3403 https://access.redhat.com/errata/RHSA-2019:3403 RedHat Security Advisories: RHSA-2019:3494 https://access.redhat.com/errata/RHSA-2019:3494 RedHat Security Advisories: RHSA-2019:3742 https://access.redhat.com/errata/RHSA-2019:3742 RedHat Security Advisories: RHSA-2019:3787 https://access.redhat.com/errata/RHSA-2019:3787 RedHat Security Advisories: RHSA-2019:3968 https://access.redhat.com/errata/RHSA-2019:3968 RedHat Security Advisories: RHSA-2019:4344 https://access.redhat.com/errata/RHSA-2019:4344 RedHat Security Advisories: RHSA-2020:0775 https://access.redhat.com/errata/RHSA-2020:0775 SuSE Security Announcement: openSUSE-SU-2019:2041 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00000.html SuSE Security Announcement: openSUSE-SU-2019:2059 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00008.html Common Vulnerability Exposure (CVE) ID: CVE-2019-15890 Bugtraq: 20200203 [SECURITY] [DSA 4616-1] qemu security update (Google Search) https://seclists.org/bugtraq/2020/Feb/0 Debian Security Information: DSA-4616 (Google Search) https://www.debian.org/security/2020/dsa-4616 https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.