SUSE-SU-2022:3594-1

Advisory lineage Upstream: 5 Downstream: 0
Published: 17 Oct 2022, 06:40
Last modified:04 Feb 2026, 02:15

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

17 Oct 2022, 06:40
Published
Vulnerability first disclosed
04 Feb 2026, 02:15
Last Modified
Vulnerability information updated

Description

Security update for qemu This update for qemu fixes the following issues: - CVE-2021-3409: Fixed an incomplete fix for CVE-2020-17380 and CVE-2020-25085 in sdhi controller. (bsc#1182282) - CVE-2021-4206: Fixed an integer overflow in cursor_alloc which can lead to heap buffer overflow. (bsc#1198035) - CVE-2021-4207: Fixed a double fetch in qxl_cursor ehich can lead to heap buffer overflow. (bsc#1198037) - CVE-2022-0216: Fixed a use after free issue found in hw/scsi/lsi53c895a.c. (bsc#1198038) - CVE-2022-35414: Fixed an uninitialized read during address translation that leads to a crash. (bsc#1201367)

Affected Systems

  • opensuseqemu&distro=openSUSE Leap 15.3

    < 4.2.1-150200.69.1

  • opensuseqemu&distro=openSUSE Leap 15.4

    < 4.2.1-150200.69.1

  • suseqemu&distro=SUSE Enterprise Storage 7

    < 4.2.1-150200.69.1

  • suseqemu&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS

    < 4.2.1-150200.69.1

  • suseqemu&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

    < 4.2.1-150200.69.1

  • suseqemu&distro=SUSE Linux Enterprise Server 15 SP2-BCL

    < 4.2.1-150200.69.1

  • suseqemu&distro=SUSE Linux Enterprise Server 15 SP2-LTSS

    < 4.2.1-150200.69.1

  • suseqemu&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

    < 4.2.1-150200.69.1

  • suseqemu&distro=SUSE Manager Proxy 4.1

    < 4.2.1-150200.69.1

  • suseqemu&distro=SUSE Manager Retail Branch Server 4.1

    < 4.2.1-150200.69.1

  • suseqemu&distro=SUSE Manager Server 4.1

    < 4.2.1-150200.69.1

References (12)