[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2021:1942-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":42,"duplicates":43,"related":44,"reserved_at":9,"published_at":59,"modified_at":60,"state":9,"summary":61,"references_raw":63,"kevs":196,"epss":9,"epss_history":197,"metrics":198,"affected":199},"OPENSUSE-SU-2021:1942-1","Security update for qemu\n\nThis update for qemu fixes the following issues:\n\n- Switch method of splitting off hw-s390x-virtio-gpu-ccw.so as a module to what was accepted upstream (bsc#1181103)\n- Fix OOB access in sdhci interface (CVE-2020-17380, bsc#1175144, CVE-2020-25085, bsc#1176681, CVE-2021-3409, bsc#1182282)\n- Fix potential privilege escalation in virtiofsd tool (CVE-2021-20263, bsc#1183373)\n- Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968)\n- Fix heap overflow in MSIx emulation (CVE-2020-27821, bsc#1179686)\n- Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425)\n- QEMU BIOS fails to read stage2 loader on s390x (bsc#1186290)\n- For the record, these issues are fixed in this package already.\n  Most are alternate references to previously mentioned issues:\n  (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019,\n  CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683,\n  CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477,\n  CVE-2020-29129, bsc#1179484, CVE-2021-3419, bsc#1182975)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40],{"_key":15},"CVE-2019-15890",{"_key":17},"CVE-2020-14364",{"_key":19},"CVE-2020-17380",{"_key":21},"CVE-2020-25085",{"_key":23},"CVE-2020-25707",{"_key":25},"CVE-2020-25723",{"_key":27},"CVE-2020-27821",{"_key":29},"CVE-2020-29129",{"_key":31},"CVE-2020-29130",{"_key":33},"CVE-2020-8608",{"_key":35},"CVE-2021-20263",{"_key":37},"CVE-2021-3409",{"_key":39},"CVE-2021-3416",{"_key":41},"CVE-2021-3419",[],[],[45,46,47,48,49,50,51,52,53,54,55,56,57,58],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},"2021-07-11T09:13:24Z","2025-05-07T18:10:46.174369Z",{"cisa_kev":62,"cisa_ransomware":62,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[64,70,75,79,83,87,91,95,99,103,107,111,115,119,123,127,131,135,139,144,148,152,156,160,164,168,172,176,180,184,188,192],{"url":65,"sources":66,"tags":68},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IEKBDJBTGKO53MSKM3SRYVUQDWIJ2N5I/",[67],"osv_opensuse",[69],"Advisory",{"url":71,"sources":72,"tags":73},"https://bugzilla.suse.com/1149813",[67],[74],"REPORT",{"url":76,"sources":77,"tags":78},"https://bugzilla.suse.com/1163019",[67],[74],{"url":80,"sources":81,"tags":82},"https://bugzilla.suse.com/1175144",[67],[74],{"url":84,"sources":85,"tags":86},"https://bugzilla.suse.com/1175534",[67],[74],{"url":88,"sources":89,"tags":90},"https://bugzilla.suse.com/1176681",[67],[74],{"url":92,"sources":93,"tags":94},"https://bugzilla.suse.com/1178683",[67],[74],{"url":96,"sources":97,"tags":98},"https://bugzilla.suse.com/1178935",[67],[74],{"url":100,"sources":101,"tags":102},"https://bugzilla.suse.com/1179477",[67],[74],{"url":104,"sources":105,"tags":106},"https://bugzilla.suse.com/1179484",[67],[74],{"url":108,"sources":109,"tags":110},"https://bugzilla.suse.com/1179686",[67],[74],{"url":112,"sources":113,"tags":114},"https://bugzilla.suse.com/1181103",[67],[74],{"url":116,"sources":117,"tags":118},"https://bugzilla.suse.com/1182282",[67],[74],{"url":120,"sources":121,"tags":122},"https://bugzilla.suse.com/1182425",[67],[74],{"url":124,"sources":125,"tags":126},"https://bugzilla.suse.com/1182968",[67],[74],{"url":128,"sources":129,"tags":130},"https://bugzilla.suse.com/1182975",[67],[74],{"url":132,"sources":133,"tags":134},"https://bugzilla.suse.com/1183373",[67],[74],{"url":136,"sources":137,"tags":138},"https://bugzilla.suse.com/1186290",[67],[74],{"url":140,"sources":141,"tags":142},"https://www.suse.com/security/cve/CVE-2019-15890",[67],[143],"WEB",{"url":145,"sources":146,"tags":147},"https://www.suse.com/security/cve/CVE-2020-14364",[67],[143],{"url":149,"sources":150,"tags":151},"https://www.suse.com/security/cve/CVE-2020-17380",[67],[143],{"url":153,"sources":154,"tags":155},"https://www.suse.com/security/cve/CVE-2020-25085",[67],[143],{"url":157,"sources":158,"tags":159},"https://www.suse.com/security/cve/CVE-2020-25707",[67],[143],{"url":161,"sources":162,"tags":163},"https://www.suse.com/security/cve/CVE-2020-25723",[67],[143],{"url":165,"sources":166,"tags":167},"https://www.suse.com/security/cve/CVE-2020-27821",[67],[143],{"url":169,"sources":170,"tags":171},"https://www.suse.com/security/cve/CVE-2020-29129",[67],[143],{"url":173,"sources":174,"tags":175},"https://www.suse.com/security/cve/CVE-2020-29130",[67],[143],{"url":177,"sources":178,"tags":179},"https://www.suse.com/security/cve/CVE-2020-8608",[67],[143],{"url":181,"sources":182,"tags":183},"https://www.suse.com/security/cve/CVE-2021-20263",[67],[143],{"url":185,"sources":186,"tags":187},"https://www.suse.com/security/cve/CVE-2021-3409",[67],[143],{"url":189,"sources":190,"tags":191},"https://www.suse.com/security/cve/CVE-2021-3416",[67],[143],{"url":193,"sources":194,"tags":195},"https://www.suse.com/security/cve/CVE-2021-3419",[67],[143],[],[],[],[200],{"ecosystem":201,"name":202,"vendor":203,"product":204,"cpe_part":9,"purl_type":205,"purl_namespace":203,"purl_name":204,"source":9,"versions":206},"openSUSE","qemu","opensuse","qemu&distro=openSUSE Leap 15.3","rpm",[207],{"version":208,"is_range":209,"range_type":210,"version_start":9,"version_start_type":9,"version_end":211,"version_end_type":212,"fixed_in":9},"lt5_2_0_17_1",true,"ecosystem","5.2.0-17.1","excluding"]