SUSE-SU-2021:2212-1

Advisory lineage Upstream: 3 Downstream: 0

Upstream

CVE-2021-3544 CVE-2021-3545 CVE-2021-3546

Published: 30 Jun 2021, 13:59

Last modified:04 Feb 2026, 02:53

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

30 Jun 2021, 13:59

Published

Vulnerability first disclosed

04 Feb 2026, 02:53

Last Modified

Vulnerability information updated

Description

Security update for qemu This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3546: Fix out-of-bounds write in virgl_cmd_get_capset (bsc#1185981) - CVE-2021-3544: Fix memory leaks found in the virtio vhost-user GPU device (bsc#1186010) - CVE-2021-3545: Fix information disclosure due to uninitialized memory read (bsc#1185990) Non-security issues fixed: - Fix testsuite error (bsc#1184574) - Fix qemu crash with iothread when block commit after snapshot (bsc#1187013) - Fix qemu hang while cancelling migrating hugepage vm (bsc#1185591) - Use RCU to avoid race during scsi hotplug/hotunplug (bsc#1184574)

Affected Systems

suse•qemu&distro=SUSE Linux Enterprise Micro 5.0
< 4.2.1-11.22.1
suse•qemu&distro=SUSE Linux Enterprise Module for Basesystem 15 SP2
< 4.2.1-11.22.1
suse•qemu&distro=SUSE Linux Enterprise Module for Server Applications 15 SP2
< 4.2.1-11.22.1

SUSE-SU-2021:2212-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (10)