OPENSUSE-SU-2022:0930-1
Advisory lineage Upstream: 2 Downstream: 0
Upstream
Published: 22 Mar 2022, 08:22
Last modified:04 Feb 2026, 04:11
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
22 Mar 2022, 08:22
Published
Vulnerability first disclosed
04 Feb 2026, 04:11
Last Modified
Vulnerability information updated
Description
Security update for qemu This update for qemu fixes the following issues: - CVE-2022-0358: Fixed a potential privilege escalation via virtiofsd (bsc#1195161). - CVE-2021-3930: Fixed a potential denial of service in the emulated SCSI device (bsc#1192525). Non-security fixes: - Fixed a kernel data corruption via a long kernel boot cmdline (bsc#1196737). - Included vmxcap in the qemu-tools package (bsc#1193364). - Fixed package dependencies (bsc#1196087). - Fixed an issue were PowerPC firmwares would not be built for non-PowerPC builds (bsc#1193545). - Fixed multiple issues in I/O (bsc#1178049 bsc#1194938).
Affected Systems
- opensuse•qemu-linux-user&distro=openSUSE Leap 15.3
< 5.2.0-150300.112.3
- opensuse•qemu-testsuite&distro=openSUSE Leap 15.3
< 5.2.0-150300.112.7
- opensuse•qemu&distro=openSUSE Leap 15.3
< 5.2.0-150300.112.4
References (11)
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VFLDWSRMX7BN3NXC6GXAFPJLCC5D5KIJ/
- https://bugzilla.suse.com/1178049
- https://bugzilla.suse.com/1192525
- https://bugzilla.suse.com/1193364
- https://bugzilla.suse.com/1193545
- https://bugzilla.suse.com/1194938
- https://bugzilla.suse.com/1195161
- https://bugzilla.suse.com/1196087
- https://bugzilla.suse.com/1196737
- https://www.suse.com/security/cve/CVE-2021-3930
- https://www.suse.com/security/cve/CVE-2022-0358