[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2021:1240-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":58,"duplicates":59,"related":60,"reserved_at":9,"published_at":83,"modified_at":84,"state":9,"summary":85,"references_raw":87,"kevs":276,"epss":9,"epss_history":277,"metrics":278,"affected":279},"SUSE-SU-2021:1240-1","Security update for qemu\n\nThis update for qemu fixes the following issues:\n\n- Fix OOB access in sm501 device emulation (CVE-2020-12829, bsc#1172385)\n- Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation (CVE-2020-13362 bsc#1172383)\n- Fix use-after-free in usb xhci packet handling (CVE-2020-25723, bsc#1178934)\n- Fix use-after-free in usb ehci packet handling (CVE-2020-25084, bsc#1176673)\n- Fix OOB access in usb hcd-ohci emulation (CVE-2020-25624, bsc#1176682)\n- Fix infinite loop (DoS) in usb hcd-ohci emulation (CVE-2020-25625, bsc#1176684)\n- Fix guest triggerable assert in shared network handling code (CVE-2020-27617, bsc#1178174)\n- Fix infinite loop (DoS) in e1000e device emulation (CVE-2020-28916, bsc#1179468)\n- Fix OOB access in atapi emulation (CVE-2020-29443, bsc#1181108)\n- Fix null pointer deref. (DoS) in mmio ops (CVE-2020-15469, bsc#1173612)\n- Fix infinite loop (DoS) in e1000 device emulation (CVE-2021-20257, bsc#1182577)\n- Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968)\n- Fix OOB access (stack overflow) in other NIC emulations (CVE-2021-3416)\n- Fix OOB access in SLIRP ARP packet processing (CVE-2020-29130, bsc#1179467)\n- Fix null pointer dereference possibility (DoS) in MegaRAID SAS 8708EM2 emulation (CVE-2020-13659 bsc#1172386\n- Fix OOB access in iscsi (CVE-2020-11947 bsc#1180523)\n- Fix OOB access in vmxnet3 emulation (CVE-2021-20203 bsc#1181639)\n- Fix buffer overflow in the XGMAC device (CVE-2020-15863, bsc#1174386)\n- Fix DoS in packet processing of various emulated NICs (CVE-2020-16092 bsc#1174641)\n- Fix OOB access while processing USB packets (CVE-2020-14364 bsc#1175441)\n- Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425)\n- Fix potential privilege escalation in virtfs (CVE-2021-20181 bsc#1182137)\n- Fix OOB access possibility in ES1370 audio device emulation (CVE-2020-13361 bsc#1172384)\n- Fix OOB access in ROM loading (CVE-2020-13765 bsc#1172478)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56],{"_key":15},"CVE-2020-11947",{"_key":17},"CVE-2020-12829",{"_key":19},"CVE-2020-13361",{"_key":21},"CVE-2020-13362",{"_key":23},"CVE-2020-13659",{"_key":25},"CVE-2020-13765",{"_key":27},"CVE-2020-14364",{"_key":29},"CVE-2020-15469",{"_key":31},"CVE-2020-15863",{"_key":33},"CVE-2020-16092",{"_key":35},"CVE-2020-25084",{"_key":37},"CVE-2020-25624",{"_key":39},"CVE-2020-25625",{"_key":41},"CVE-2020-25723",{"_key":43},"CVE-2020-27617",{"_key":45},"CVE-2020-28916",{"_key":47},"CVE-2020-29130",{"_key":49},"CVE-2020-29443",{"_key":51},"CVE-2021-20181",{"_key":53},"CVE-2021-20203",{"_key":55},"CVE-2021-20257",{"_key":57},"CVE-2021-3416",[],[],[61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},"2021-04-16T11:58:20Z","2026-02-04T04:22:26.237780Z",{"cisa_kev":86,"cisa_ransomware":86,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[88,94,99,103,107,111,115,119,123,127,131,135,139,143,147,151,155,159,163,167,171,175,179,183,187,192,196,200,204,208,212,216,220,224,228,232,236,240,244,248,252,256,260,264,268,272],{"url":89,"sources":90,"tags":92},"https://www.suse.com/support/update/announcement/2021/suse-su-20211240-1/",[91],"osv_suse",[93],"Advisory",{"url":95,"sources":96,"tags":97},"https://bugzilla.suse.com/1172383",[91],[98],"REPORT",{"url":100,"sources":101,"tags":102},"https://bugzilla.suse.com/1172384",[91],[98],{"url":104,"sources":105,"tags":106},"https://bugzilla.suse.com/1172385",[91],[98],{"url":108,"sources":109,"tags":110},"https://bugzilla.suse.com/1172386",[91],[98],{"url":112,"sources":113,"tags":114},"https://bugzilla.suse.com/1172478",[91],[98],{"url":116,"sources":117,"tags":118},"https://bugzilla.suse.com/1173612",[91],[98],{"url":120,"sources":121,"tags":122},"https://bugzilla.suse.com/1174386",[91],[98],{"url":124,"sources":125,"tags":126},"https://bugzilla.suse.com/1174641",[91],[98],{"url":128,"sources":129,"tags":130},"https://bugzilla.suse.com/1175441",[91],[98],{"url":132,"sources":133,"tags":134},"https://bugzilla.suse.com/1176673",[91],[98],{"url":136,"sources":137,"tags":138},"https://bugzilla.suse.com/1176682",[91],[98],{"url":140,"sources":141,"tags":142},"https://bugzilla.suse.com/1176684",[91],[98],{"url":144,"sources":145,"tags":146},"https://bugzilla.suse.com/1178174",[91],[98],{"url":148,"sources":149,"tags":150},"https://bugzilla.suse.com/1178934",[91],[98],{"url":152,"sources":153,"tags":154},"https://bugzilla.suse.com/1179467",[91],[98],{"url":156,"sources":157,"tags":158},"https://bugzilla.suse.com/1179468",[91],[98],{"url":160,"sources":161,"tags":162},"https://bugzilla.suse.com/1180523",[91],[98],{"url":164,"sources":165,"tags":166},"https://bugzilla.suse.com/1181108",[91],[98],{"url":168,"sources":169,"tags":170},"https://bugzilla.suse.com/1181639",[91],[98],{"url":172,"sources":173,"tags":174},"https://bugzilla.suse.com/1182137",[91],[98],{"url":176,"sources":177,"tags":178},"https://bugzilla.suse.com/1182425",[91],[98],{"url":180,"sources":181,"tags":182},"https://bugzilla.suse.com/1182577",[91],[98],{"url":184,"sources":185,"tags":186},"https://bugzilla.suse.com/1182968",[91],[98],{"url":188,"sources":189,"tags":190},"https://www.suse.com/security/cve/CVE-2020-11947",[91],[191],"WEB",{"url":193,"sources":194,"tags":195},"https://www.suse.com/security/cve/CVE-2020-12829",[91],[191],{"url":197,"sources":198,"tags":199},"https://www.suse.com/security/cve/CVE-2020-13361",[91],[191],{"url":201,"sources":202,"tags":203},"https://www.suse.com/security/cve/CVE-2020-13362",[91],[191],{"url":205,"sources":206,"tags":207},"https://www.suse.com/security/cve/CVE-2020-13659",[91],[191],{"url":209,"sources":210,"tags":211},"https://www.suse.com/security/cve/CVE-2020-13765",[91],[191],{"url":213,"sources":214,"tags":215},"https://www.suse.com/security/cve/CVE-2020-14364",[91],[191],{"url":217,"sources":218,"tags":219},"https://www.suse.com/security/cve/CVE-2020-15469",[91],[191],{"url":221,"sources":222,"tags":223},"https://www.suse.com/security/cve/CVE-2020-15863",[91],[191],{"url":225,"sources":226,"tags":227},"https://www.suse.com/security/cve/CVE-2020-16092",[91],[191],{"url":229,"sources":230,"tags":231},"https://www.suse.com/security/cve/CVE-2020-25084",[91],[191],{"url":233,"sources":234,"tags":235},"https://www.suse.com/security/cve/CVE-2020-25624",[91],[191],{"url":237,"sources":238,"tags":239},"https://www.suse.com/security/cve/CVE-2020-25625",[91],[191],{"url":241,"sources":242,"tags":243},"https://www.suse.com/security/cve/CVE-2020-25723",[91],[191],{"url":245,"sources":246,"tags":247},"https://www.suse.com/security/cve/CVE-2020-27617",[91],[191],{"url":249,"sources":250,"tags":251},"https://www.suse.com/security/cve/CVE-2020-28916",[91],[191],{"url":253,"sources":254,"tags":255},"https://www.suse.com/security/cve/CVE-2020-29130",[91],[191],{"url":257,"sources":258,"tags":259},"https://www.suse.com/security/cve/CVE-2020-29443",[91],[191],{"url":261,"sources":262,"tags":263},"https://www.suse.com/security/cve/CVE-2021-20181",[91],[191],{"url":265,"sources":266,"tags":267},"https://www.suse.com/security/cve/CVE-2021-20203",[91],[191],{"url":269,"sources":270,"tags":271},"https://www.suse.com/security/cve/CVE-2021-20257",[91],[191],{"url":273,"sources":274,"tags":275},"https://www.suse.com/security/cve/CVE-2021-3416",[91],[191],[],[],[],[280,293,297,301,305,309],{"ecosystem":281,"name":282,"vendor":283,"product":284,"cpe_part":9,"purl_type":285,"purl_namespace":283,"purl_name":284,"source":9,"versions":286},"SUSE Linux Enterprise","qemu","suse","qemu&distro=HPE Helion OpenStack 8","rpm",[287],{"version":288,"is_range":289,"range_type":290,"version_start":9,"version_start_type":9,"version_end":291,"version_end_type":292,"fixed_in":9},"lt2_9_1_6_47_1",true,"ecosystem","2.9.1-6.47.1","excluding",{"ecosystem":281,"name":282,"vendor":283,"product":294,"cpe_part":9,"purl_type":285,"purl_namespace":283,"purl_name":294,"source":9,"versions":295},"qemu&distro=SUSE Linux Enterprise Server 12 SP3-BCL",[296],{"version":288,"is_range":289,"range_type":290,"version_start":9,"version_start_type":9,"version_end":291,"version_end_type":292,"fixed_in":9},{"ecosystem":281,"name":282,"vendor":283,"product":298,"cpe_part":9,"purl_type":285,"purl_namespace":283,"purl_name":298,"source":9,"versions":299},"qemu&distro=SUSE Linux Enterprise Server 12 SP3-LTSS",[300],{"version":288,"is_range":289,"range_type":290,"version_start":9,"version_start_type":9,"version_end":291,"version_end_type":292,"fixed_in":9},{"ecosystem":281,"name":282,"vendor":283,"product":302,"cpe_part":9,"purl_type":285,"purl_namespace":283,"purl_name":302,"source":9,"versions":303},"qemu&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3",[304],{"version":288,"is_range":289,"range_type":290,"version_start":9,"version_start_type":9,"version_end":291,"version_end_type":292,"fixed_in":9},{"ecosystem":281,"name":282,"vendor":283,"product":306,"cpe_part":9,"purl_type":285,"purl_namespace":283,"purl_name":306,"source":9,"versions":307},"qemu&distro=SUSE OpenStack Cloud 8",[308],{"version":288,"is_range":289,"range_type":290,"version_start":9,"version_start_type":9,"version_end":291,"version_end_type":292,"fixed_in":9},{"ecosystem":281,"name":282,"vendor":283,"product":310,"cpe_part":9,"purl_type":285,"purl_namespace":283,"purl_name":310,"source":9,"versions":311},"qemu&distro=SUSE OpenStack Cloud Crowbar 8",[312],{"version":288,"is_range":289,"range_type":290,"version_start":9,"version_start_type":9,"version_end":291,"version_end_type":292,"fixed_in":9}]