[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2019:2041-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":22,"duplicates":23,"related":24,"reserved_at":9,"published_at":29,"modified_at":30,"state":9,"summary":31,"references_raw":33,"kevs":102,"epss":9,"epss_history":103,"metrics":104,"affected":105},"OPENSUSE-SU-2019:2041-1","Security update for qemu\n\nThis update for qemu fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-14378: Security fix for heap overflow in ip_reass on big packet input (bsc#1143794).\n- CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources (bsc#1135902).\n- CVE-2019-13164: Security fix for qemu-bridge-helper ACL can be bypassed when names are too long (bsc#1140402).\n- CVE-2019-5008: Fix DoS (NULL pointer dereference) in sparc64 virtual machine possible through guest device driver (bsc#1133031).\n\nBug fixes and enhancements:\n\n- Upstream tweaked SnowRidge-Server vcpu model to now be simply Snowridge (jsc#SLE-4883)\n- Add SnowRidge-Server vcpu model (jsc#SLE-4883)\n- Add in documentation about md-clear feature (bsc#1138534)\n- Fix SEV issue where older machine type is not processed correctly (bsc#1144087)\n- Fix case of a bad pointer in Xen PV usb support code (bsc#1128106)\n- Further refine arch-capabilities handling to help with security and performance in Intel hosts (bsc#1134883, bsc#1135210) (fate#327764)\n- Add support for one more security/performance related vcpu feature (bsc#1136778) (fate#327796)\n- Ignore csske for expanding the cpu model (bsc#1136540)\n\nThis update was imported from the SUSE:SLE-15-SP1:Update update project.",null,[],[],[],[14,16,18,20],{"_key":15},"CVE-2019-12155",{"_key":17},"CVE-2019-13164",{"_key":19},"CVE-2019-14378",{"_key":21},"CVE-2019-5008",[],[],[25,26,27,28],{"_key":15},{"_key":17},{"_key":19},{"_key":21},"2019-09-01T12:18:24Z","2026-02-04T03:41:21.917461Z",{"cisa_kev":32,"cisa_ransomware":32,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[34,40,45,49,53,57,61,65,69,73,77,81,85,90,94,98],{"url":35,"sources":36,"tags":38},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/TUKWOBV7QSC7BRGVOAZZDM7P4VZESISG/#TUKWOBV7QSC7BRGVOAZZDM7P4VZESISG",[37],"osv_opensuse",[39],"Advisory",{"url":41,"sources":42,"tags":43},"https://bugzilla.suse.com/1128106",[37],[44],"REPORT",{"url":46,"sources":47,"tags":48},"https://bugzilla.suse.com/1133031",[37],[44],{"url":50,"sources":51,"tags":52},"https://bugzilla.suse.com/1134883",[37],[44],{"url":54,"sources":55,"tags":56},"https://bugzilla.suse.com/1135210",[37],[44],{"url":58,"sources":59,"tags":60},"https://bugzilla.suse.com/1135902",[37],[44],{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1136540",[37],[44],{"url":66,"sources":67,"tags":68},"https://bugzilla.suse.com/1136778",[37],[44],{"url":70,"sources":71,"tags":72},"https://bugzilla.suse.com/1138534",[37],[44],{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1140402",[37],[44],{"url":78,"sources":79,"tags":80},"https://bugzilla.suse.com/1143794",[37],[44],{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/1144087",[37],[44],{"url":86,"sources":87,"tags":88},"https://www.suse.com/security/cve/CVE-2019-12155",[37],[89],"WEB",{"url":91,"sources":92,"tags":93},"https://www.suse.com/security/cve/CVE-2019-13164",[37],[89],{"url":95,"sources":96,"tags":97},"https://www.suse.com/security/cve/CVE-2019-14378",[37],[89],{"url":99,"sources":100,"tags":101},"https://www.suse.com/security/cve/CVE-2019-5008",[37],[89],[],[],[],[106,119,126],{"ecosystem":107,"name":108,"vendor":109,"product":110,"cpe_part":9,"purl_type":111,"purl_namespace":109,"purl_name":110,"source":9,"versions":112},"openSUSE","qemu-linux-user","opensuse","qemu-linux-user&distro=openSUSE Leap 15.1","rpm",[113],{"version":114,"is_range":115,"range_type":116,"version_start":9,"version_start_type":9,"version_end":117,"version_end_type":118,"fixed_in":9},"lt3_1_1_lp151_7_3_2",true,"ecosystem","3.1.1-lp151.7.3.2","excluding",{"ecosystem":107,"name":120,"vendor":109,"product":121,"cpe_part":9,"purl_type":111,"purl_namespace":109,"purl_name":121,"source":9,"versions":122},"qemu-testsuite","qemu-testsuite&distro=openSUSE Leap 15.1",[123],{"version":124,"is_range":115,"range_type":116,"version_start":9,"version_start_type":9,"version_end":125,"version_end_type":118,"fixed_in":9},"lt3_1_1_lp151_7_3_3","3.1.1-lp151.7.3.3",{"ecosystem":107,"name":127,"vendor":109,"product":128,"cpe_part":9,"purl_type":111,"purl_namespace":109,"purl_name":128,"source":9,"versions":129},"qemu","qemu&distro=openSUSE Leap 15.1",[130],{"version":124,"is_range":115,"range_type":116,"version_start":9,"version_start_type":9,"version_end":125,"version_end_type":118,"fixed_in":9}]