[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2019:0435-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":24,"duplicates":25,"related":26,"reserved_at":9,"published_at":32,"modified_at":33,"state":9,"summary":34,"references_raw":36,"kevs":113,"epss":9,"epss_history":114,"metrics":115,"affected":116},"SUSE-SU-2019:0435-1","Security update for qemu\n\nThis update for qemu fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156).\n- CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493).\n- CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275).\n- CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717).\n- CVE-2018-18954: Fixed a denial of service vulnerability related to PowerPC PowerNV memory operations (bsc#1114957).\n\nNon-security issues fixed:\n\n- Improved disk performance for qemu on xen (bsc#1100408).\n- Fixed xen offline migration (bsc#1079730, bsc#1101982, bsc#1063993).\n- Fixed pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600).\n- Use /bin/bash to echo value into sys fs for ksm control (bsc#1112646).\n- Return specification exception for unimplemented diag 308 subcodes rather than a hardware error (bsc#1123179).\n",null,[],[],[],[14,16,18,20,22],{"_key":15},"CVE-2018-16872",{"_key":17},"CVE-2018-18954",{"_key":19},"CVE-2018-19364",{"_key":21},"CVE-2018-19489",{"_key":23},"CVE-2019-6778",[],[],[27,28,29,30,31],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},"2019-02-19T12:12:38Z","2026-02-04T02:22:49.786112Z",{"cisa_kev":35,"cisa_ransomware":35,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[37,43,48,52,56,60,64,68,72,76,80,84,88,92,97,101,105,109],{"url":38,"sources":39,"tags":41},"https://www.suse.com/support/update/announcement/2019/suse-su-20190435-1/",[40],"osv_suse",[42],"Advisory",{"url":44,"sources":45,"tags":46},"https://bugzilla.suse.com/1063993",[40],[47],"REPORT",{"url":49,"sources":50,"tags":51},"https://bugzilla.suse.com/1079730",[40],[47],{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/1100408",[40],[47],{"url":57,"sources":58,"tags":59},"https://bugzilla.suse.com/1101982",[40],[47],{"url":61,"sources":62,"tags":63},"https://bugzilla.suse.com/1112646",[40],[47],{"url":65,"sources":66,"tags":67},"https://bugzilla.suse.com/1114957",[40],[47],{"url":69,"sources":70,"tags":71},"https://bugzilla.suse.com/1116717",[40],[47],{"url":73,"sources":74,"tags":75},"https://bugzilla.suse.com/1117275",[40],[47],{"url":77,"sources":78,"tags":79},"https://bugzilla.suse.com/1119493",[40],[47],{"url":81,"sources":82,"tags":83},"https://bugzilla.suse.com/1121600",[40],[47],{"url":85,"sources":86,"tags":87},"https://bugzilla.suse.com/1123156",[40],[47],{"url":89,"sources":90,"tags":91},"https://bugzilla.suse.com/1123179",[40],[47],{"url":93,"sources":94,"tags":95},"https://www.suse.com/security/cve/CVE-2018-16872",[40],[96],"WEB",{"url":98,"sources":99,"tags":100},"https://www.suse.com/security/cve/CVE-2018-18954",[40],[96],{"url":102,"sources":103,"tags":104},"https://www.suse.com/security/cve/CVE-2018-19364",[40],[96],{"url":106,"sources":107,"tags":108},"https://www.suse.com/security/cve/CVE-2018-19489",[40],[96],{"url":110,"sources":111,"tags":112},"https://www.suse.com/security/cve/CVE-2019-6778",[40],[96],[],[],[],[117,130,134],{"ecosystem":118,"name":119,"vendor":120,"product":121,"cpe_part":9,"purl_type":122,"purl_namespace":120,"purl_name":121,"source":9,"versions":123},"SUSE Linux Enterprise","qemu","suse","qemu&distro=SUSE Linux Enterprise Desktop 12 SP4","rpm",[124],{"version":125,"is_range":126,"range_type":127,"version_start":9,"version_start_type":9,"version_end":128,"version_end_type":129,"fixed_in":9},"lt2_11_2_5_8_1",true,"ecosystem","2.11.2-5.8.1","excluding",{"ecosystem":118,"name":119,"vendor":120,"product":131,"cpe_part":9,"purl_type":122,"purl_namespace":120,"purl_name":131,"source":9,"versions":132},"qemu&distro=SUSE Linux Enterprise Server 12 SP4",[133],{"version":125,"is_range":126,"range_type":127,"version_start":9,"version_start_type":9,"version_end":128,"version_end_type":129,"fixed_in":9},{"ecosystem":118,"name":119,"vendor":120,"product":135,"cpe_part":9,"purl_type":122,"purl_namespace":120,"purl_name":135,"source":9,"versions":136},"qemu&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4",[137],{"version":125,"is_range":126,"range_type":127,"version_start":9,"version_start_type":9,"version_end":128,"version_end_type":129,"fixed_in":9}]