[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2016:1703-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":78,"duplicates":79,"related":80,"reserved_at":9,"published_at":113,"modified_at":114,"state":9,"summary":115,"references_raw":117,"kevs":390,"epss":9,"epss_history":391,"metrics":392,"affected":393},"SUSE-SU-2016:1703-1","Security update for qemu\n\nqemu was updated to fix 29 security issues.\n\nThese security issues were fixed:\n- CVE-2016-4439: Avoid OOB access in 53C9X emulation (bsc#980711)\n- CVE-2016-4441: Avoid OOB access in 53C9X emulation (bsc#980723)\n- CVE-2016-4952: Avoid OOB access in Vmware PV SCSI emulation (bsc#981266)\n- CVE-2015-8817: Avoid OOB access in PCI dma I/O (bsc#969121)\n- CVE-2015-8818: Avoid OOB access in PCI dma I/O (bsc#969122)\n- CVE-2016-3710: Fixed VGA emulation based OOB access with potential for guest escape (bsc#978158)\n- CVE-2016-3712: Fixed VGa emulation based DOS and OOB read access exploit (bsc#978160)\n- CVE-2016-4037: Fixed USB ehci based DOS (bsc#976109)\n- CVE-2016-2538: Fixed potential OOB access in USB net device emulation (bsc#967969)\n- CVE-2016-2841: Fixed OOB access / hang in ne2000 emulation (bsc#969350)\n- CVE-2016-2858: Avoid potential DOS when using QEMU pseudo random number generator (bsc#970036)\n- CVE-2016-2857: Fixed OOB access when processing IP checksums (bsc#970037)\n- CVE-2016-4001: Fixed OOB access in Stellaris enet emulated nic (bsc#975128)\n- CVE-2016-4002: Fixed OOB access in MIPSnet emulated controller (bsc#975136)\n- CVE-2016-4020: Fixed possible host data leakage to guest from TPR access (bsc#975700)\n- CVE-2016-2197: Prevent AHCI NULL pointer dereference when using FIS CLB engine (bsc#964411)\n- CVE-2015-5745: Buffer overflow in virtio-serial (bsc#940929).\n- CVE-2015-7549: PCI null pointer dereferences (bsc#958917).\n- CVE-2015-8504: VNC floating point exception (bsc#958491).\n- CVE-2015-8558: Infinite loop in ehci_advance_state resulting in DoS (bsc#959005).\n- CVE-2015-8567: A guest repeatedly activating a vmxnet3 device can leak host memory (bsc#959386).\n- CVE-2015-8568: A guest repeatedly activating a vmxnet3 device can leak host memory (bsc#959386).\n- CVE-2015-8613: Wrong sized memset in megasas command handler (bsc#961358).\n- CVE-2015-8619: Potential DoS for long HMP sendkey command argument (bsc#960334).\n- CVE-2015-8743: OOB memory access in ne2000 ioport r/w functions (bsc#960725).\n- CVE-2015-8744: Incorrect l2 header validation could have lead to a crash via assert(2) call (bsc#960835).\n- CVE-2015-8745: Reading IMR registers could have lead to a crash via assert(2) call (bsc#960708).\n- CVE-2016-1568: AHCI use-after-free in aio port commands (bsc#961332).\n- CVE-2016-1714: Potential OOB memory access in processing firmware configuration (bsc#961691).\n- CVE-2016-1922: NULL pointer dereference when processing hmp i/o command (bsc#962320).\n- CVE-2016-1981: Potential DoS (infinite loop) in e1000 device emulation by malicious privileged user within guest (bsc#963782).\n- CVE-2016-2198: Malicious privileged guest user were able to cause DoS by writing to read-only EHCI capabilities registers (bsc#964413).\n\nThis non-security issue was fixed\n- bsc#886378: qemu truncates vhd images in virt-rescue\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76],{"_key":15},"CVE-2015-5745",{"_key":17},"CVE-2015-7549",{"_key":19},"CVE-2015-8504",{"_key":21},"CVE-2015-8558",{"_key":23},"CVE-2015-8567",{"_key":25},"CVE-2015-8568",{"_key":27},"CVE-2015-8613",{"_key":29},"CVE-2015-8619",{"_key":31},"CVE-2015-8743",{"_key":33},"CVE-2015-8744",{"_key":35},"CVE-2015-8745",{"_key":37},"CVE-2015-8817",{"_key":39},"CVE-2015-8818",{"_key":41},"CVE-2016-1568",{"_key":43},"CVE-2016-1714",{"_key":45},"CVE-2016-1922",{"_key":47},"CVE-2016-1981",{"_key":49},"CVE-2016-2197",{"_key":51},"CVE-2016-2198",{"_key":53},"CVE-2016-2538",{"_key":55},"CVE-2016-2841",{"_key":57},"CVE-2016-2857",{"_key":59},"CVE-2016-2858",{"_key":61},"CVE-2016-3710",{"_key":63},"CVE-2016-3712",{"_key":65},"CVE-2016-4001",{"_key":67},"CVE-2016-4002",{"_key":69},"CVE-2016-4020",{"_key":71},"CVE-2016-4037",{"_key":73},"CVE-2016-4439",{"_key":75},"CVE-2016-4441",{"_key":77},"CVE-2016-4952",[],[],[81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},"2016-06-29T05:47:55Z","2026-02-04T04:36:14.909397Z",{"cisa_kev":116,"cisa_ransomware":116,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[118,124,129,133,137,141,145,149,153,157,161,165,169,173,177,181,185,189,193,197,201,205,209,213,217,221,225,229,233,237,241,245,249,253,257,261,266,270,274,278,282,286,290,294,298,302,306,310,314,318,322,326,330,334,338,342,346,350,354,358,362,366,370,374,378,382,386],{"url":119,"sources":120,"tags":122},"https://www.suse.com/support/update/announcement/2016/suse-su-20161703-1/",[121],"osv_suse",[123],"Advisory",{"url":125,"sources":126,"tags":127},"https://bugzilla.suse.com/886378",[121],[128],"REPORT",{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/940929",[121],[128],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/958491",[121],[128],{"url":138,"sources":139,"tags":140},"https://bugzilla.suse.com/958917",[121],[128],{"url":142,"sources":143,"tags":144},"https://bugzilla.suse.com/959005",[121],[128],{"url":146,"sources":147,"tags":148},"https://bugzilla.suse.com/959386",[121],[128],{"url":150,"sources":151,"tags":152},"https://bugzilla.suse.com/960334",[121],[128],{"url":154,"sources":155,"tags":156},"https://bugzilla.suse.com/960708",[121],[128],{"url":158,"sources":159,"tags":160},"https://bugzilla.suse.com/960725",[121],[128],{"url":162,"sources":163,"tags":164},"https://bugzilla.suse.com/960835",[121],[128],{"url":166,"sources":167,"tags":168},"https://bugzilla.suse.com/961332",[121],[128],{"url":170,"sources":171,"tags":172},"https://bugzilla.suse.com/961333",[121],[128],{"url":174,"sources":175,"tags":176},"https://bugzilla.suse.com/961358",[121],[128],{"url":178,"sources":179,"tags":180},"https://bugzilla.suse.com/961556",[121],[128],{"url":182,"sources":183,"tags":184},"https://bugzilla.suse.com/961691",[121],[128],{"url":186,"sources":187,"tags":188},"https://bugzilla.suse.com/962320",[121],[128],{"url":190,"sources":191,"tags":192},"https://bugzilla.suse.com/963782",[121],[128],{"url":194,"sources":195,"tags":196},"https://bugzilla.suse.com/964411",[121],[128],{"url":198,"sources":199,"tags":200},"https://bugzilla.suse.com/964413",[121],[128],{"url":202,"sources":203,"tags":204},"https://bugzilla.suse.com/967969",[121],[128],{"url":206,"sources":207,"tags":208},"https://bugzilla.suse.com/969121",[121],[128],{"url":210,"sources":211,"tags":212},"https://bugzilla.suse.com/969122",[121],[128],{"url":214,"sources":215,"tags":216},"https://bugzilla.suse.com/969350",[121],[128],{"url":218,"sources":219,"tags":220},"https://bugzilla.suse.com/970036",[121],[128],{"url":222,"sources":223,"tags":224},"https://bugzilla.suse.com/970037",[121],[128],{"url":226,"sources":227,"tags":228},"https://bugzilla.suse.com/975128",[121],[128],{"url":230,"sources":231,"tags":232},"https://bugzilla.suse.com/975136",[121],[128],{"url":234,"sources":235,"tags":236},"https://bugzilla.suse.com/975700",[121],[128],{"url":238,"sources":239,"tags":240},"https://bugzilla.suse.com/976109",[121],[128],{"url":242,"sources":243,"tags":244},"https://bugzilla.suse.com/978158",[121],[128],{"url":246,"sources":247,"tags":248},"https://bugzilla.suse.com/978160",[121],[128],{"url":250,"sources":251,"tags":252},"https://bugzilla.suse.com/980711",[121],[128],{"url":254,"sources":255,"tags":256},"https://bugzilla.suse.com/980723",[121],[128],{"url":258,"sources":259,"tags":260},"https://bugzilla.suse.com/981266",[121],[128],{"url":262,"sources":263,"tags":264},"https://www.suse.com/security/cve/CVE-2015-5745",[121],[265],"WEB",{"url":267,"sources":268,"tags":269},"https://www.suse.com/security/cve/CVE-2015-7549",[121],[265],{"url":271,"sources":272,"tags":273},"https://www.suse.com/security/cve/CVE-2015-8504",[121],[265],{"url":275,"sources":276,"tags":277},"https://www.suse.com/security/cve/CVE-2015-8558",[121],[265],{"url":279,"sources":280,"tags":281},"https://www.suse.com/security/cve/CVE-2015-8567",[121],[265],{"url":283,"sources":284,"tags":285},"https://www.suse.com/security/cve/CVE-2015-8568",[121],[265],{"url":287,"sources":288,"tags":289},"https://www.suse.com/security/cve/CVE-2015-8613",[121],[265],{"url":291,"sources":292,"tags":293},"https://www.suse.com/security/cve/CVE-2015-8619",[121],[265],{"url":295,"sources":296,"tags":297},"https://www.suse.com/security/cve/CVE-2015-8743",[121],[265],{"url":299,"sources":300,"tags":301},"https://www.suse.com/security/cve/CVE-2015-8744",[121],[265],{"url":303,"sources":304,"tags":305},"https://www.suse.com/security/cve/CVE-2015-8745",[121],[265],{"url":307,"sources":308,"tags":309},"https://www.suse.com/security/cve/CVE-2015-8817",[121],[265],{"url":311,"sources":312,"tags":313},"https://www.suse.com/security/cve/CVE-2015-8818",[121],[265],{"url":315,"sources":316,"tags":317},"https://www.suse.com/security/cve/CVE-2016-1568",[121],[265],{"url":319,"sources":320,"tags":321},"https://www.suse.com/security/cve/CVE-2016-1714",[121],[265],{"url":323,"sources":324,"tags":325},"https://www.suse.com/security/cve/CVE-2016-1922",[121],[265],{"url":327,"sources":328,"tags":329},"https://www.suse.com/security/cve/CVE-2016-1981",[121],[265],{"url":331,"sources":332,"tags":333},"https://www.suse.com/security/cve/CVE-2016-2197",[121],[265],{"url":335,"sources":336,"tags":337},"https://www.suse.com/security/cve/CVE-2016-2198",[121],[265],{"url":339,"sources":340,"tags":341},"https://www.suse.com/security/cve/CVE-2016-2538",[121],[265],{"url":343,"sources":344,"tags":345},"https://www.suse.com/security/cve/CVE-2016-2841",[121],[265],{"url":347,"sources":348,"tags":349},"https://www.suse.com/security/cve/CVE-2016-2857",[121],[265],{"url":351,"sources":352,"tags":353},"https://www.suse.com/security/cve/CVE-2016-2858",[121],[265],{"url":355,"sources":356,"tags":357},"https://www.suse.com/security/cve/CVE-2016-3710",[121],[265],{"url":359,"sources":360,"tags":361},"https://www.suse.com/security/cve/CVE-2016-3712",[121],[265],{"url":363,"sources":364,"tags":365},"https://www.suse.com/security/cve/CVE-2016-4001",[121],[265],{"url":367,"sources":368,"tags":369},"https://www.suse.com/security/cve/CVE-2016-4002",[121],[265],{"url":371,"sources":372,"tags":373},"https://www.suse.com/security/cve/CVE-2016-4020",[121],[265],{"url":375,"sources":376,"tags":377},"https://www.suse.com/security/cve/CVE-2016-4037",[121],[265],{"url":379,"sources":380,"tags":381},"https://www.suse.com/security/cve/CVE-2016-4439",[121],[265],{"url":383,"sources":384,"tags":385},"https://www.suse.com/security/cve/CVE-2016-4441",[121],[265],{"url":387,"sources":388,"tags":389},"https://www.suse.com/security/cve/CVE-2016-4952",[121],[265],[],[],[],[394,407,411],{"ecosystem":395,"name":396,"vendor":397,"product":398,"cpe_part":9,"purl_type":399,"purl_namespace":397,"purl_name":398,"source":9,"versions":400},"SUSE Linux Enterprise","qemu","suse","qemu&distro=SUSE Linux Enterprise Desktop 12 SP1","rpm",[401],{"version":402,"is_range":403,"range_type":404,"version_start":9,"version_start_type":9,"version_end":405,"version_end_type":406,"fixed_in":9},"lt2_3_1_14_1",true,"ecosystem","2.3.1-14.1","excluding",{"ecosystem":395,"name":396,"vendor":397,"product":408,"cpe_part":9,"purl_type":399,"purl_namespace":397,"purl_name":408,"source":9,"versions":409},"qemu&distro=SUSE Linux Enterprise Server 12 SP1",[410],{"version":402,"is_range":403,"range_type":404,"version_start":9,"version_start_type":9,"version_end":405,"version_end_type":406,"fixed_in":9},{"ecosystem":395,"name":396,"vendor":397,"product":412,"cpe_part":9,"purl_type":399,"purl_namespace":397,"purl_name":412,"source":9,"versions":413},"qemu&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[414],{"version":402,"is_range":403,"range_type":404,"version_start":9,"version_start_type":9,"version_end":405,"version_end_type":406,"fixed_in":9}]