[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2019:2192-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":22,"duplicates":23,"related":24,"reserved_at":9,"published_at":29,"modified_at":30,"state":9,"summary":31,"references_raw":33,"kevs":110,"epss":9,"epss_history":111,"metrics":112,"affected":113},"SUSE-SU-2019:2192-1","Security update for qemu\n\nThis update for qemu fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-14378: Security fix for heap overflow in ip_reass on big packet input (bsc#1143794).\n- CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources (bsc#1135902).\n- CVE-2019-13164: Security fix for qemu-bridge-helper ACL can be bypassed when names are too long (bsc#1140402).\n- CVE-2019-5008: Fix DoS (NULL pointer dereference) in sparc64 virtual machine possible through guest device driver (bsc#1133031).\n\nBug fixes and enhancements:\n\n- Upstream tweaked SnowRidge-Server vcpu model to now be simply Snowridge (jsc#SLE-4883)\n- Add SnowRidge-Server vcpu model (jsc#SLE-4883)\n- Add in documentation about md-clear feature (bsc#1138534)\n- Fix SEV issue where older machine type is not processed correctly (bsc#1144087)\n- Fix case of a bad pointer in Xen PV usb support code (bsc#1128106)\n- Further refine arch-capabilities handling to help with security and performance in Intel hosts (bsc#1134883, bsc#1135210) (fate#327764)\n- Add support for one more security/performance related vcpu feature (bsc#1136778) (fate#327796)\n- Ignore csske for expanding the cpu model (bsc#1136540)\n",null,[],[],[],[14,16,18,20],{"_key":15},"CVE-2019-12155",{"_key":17},"CVE-2019-13164",{"_key":19},"CVE-2019-14378",{"_key":21},"CVE-2019-5008",[],[],[25,26,27,28],{"_key":15},{"_key":17},{"_key":19},{"_key":21},"2019-08-21T16:00:29Z","2026-02-04T03:02:32.861743Z",{"cisa_kev":32,"cisa_ransomware":32,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[34,40,45,49,53,57,61,65,69,73,77,81,85,90,94,98,102,106],{"url":35,"sources":36,"tags":38},"https://www.suse.com/support/update/announcement/2019/suse-su-20192192-1/",[37],"osv_suse",[39],"Advisory",{"url":41,"sources":42,"tags":43},"https://bugzilla.suse.com/1128106",[37],[44],"REPORT",{"url":46,"sources":47,"tags":48},"https://bugzilla.suse.com/1133031",[37],[44],{"url":50,"sources":51,"tags":52},"https://bugzilla.suse.com/1134883",[37],[44],{"url":54,"sources":55,"tags":56},"https://bugzilla.suse.com/1135210",[37],[44],{"url":58,"sources":59,"tags":60},"https://bugzilla.suse.com/1135902",[37],[44],{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1136540",[37],[44],{"url":66,"sources":67,"tags":68},"https://bugzilla.suse.com/1136778",[37],[44],{"url":70,"sources":71,"tags":72},"https://bugzilla.suse.com/1138534",[37],[44],{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1140402",[37],[44],{"url":78,"sources":79,"tags":80},"https://bugzilla.suse.com/1143794",[37],[44],{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/1144087",[37],[44],{"url":86,"sources":87,"tags":88},"https://www.suse.com/security/cve/CVE-2019-12155",[37],[89],"WEB",{"url":91,"sources":92,"tags":93},"https://www.suse.com/security/cve/CVE-2019-13164",[37],[89],{"url":95,"sources":96,"tags":97},"https://www.suse.com/security/cve/CVE-2019-14378",[37],[89],{"url":99,"sources":100,"tags":101},"https://www.suse.com/security/cve/CVE-2019-5008",[37],[89],{"url":103,"sources":104,"tags":105},"https://bugzilla.suse.com/SLE-4883",[37],[44],{"url":107,"sources":108,"tags":109},"https://bugzilla.suse.com/SLE-6754",[37],[44],[],[],[],[114,127],{"ecosystem":115,"name":116,"vendor":117,"product":118,"cpe_part":9,"purl_type":119,"purl_namespace":117,"purl_name":118,"source":9,"versions":120},"SUSE Linux Enterprise","qemu","suse","qemu&distro=SUSE Linux Enterprise Module for Basesystem 15 SP1","rpm",[121],{"version":122,"is_range":123,"range_type":124,"version_start":9,"version_start_type":9,"version_end":125,"version_end_type":126,"fixed_in":9},"lt3_1_1_9_3_3",true,"ecosystem","3.1.1-9.3.3","excluding",{"ecosystem":115,"name":116,"vendor":117,"product":128,"cpe_part":9,"purl_type":119,"purl_namespace":117,"purl_name":128,"source":9,"versions":129},"qemu&distro=SUSE Linux Enterprise Module for Server Applications 15 SP1",[130],{"version":122,"is_range":123,"range_type":124,"version_start":9,"version_start_type":9,"version_end":125,"version_end_type":126,"fixed_in":9}]