Lucene search

K
debianDebianDEBIAN:DSA-5133-1:E791B
HistoryMay 09, 2022 - 8:44 p.m.

[SECURITY] [DSA 5133-1] qemu security update

2022-05-0920:44:24
lists.debian.org
44
debian
qemu
cve-2022-26353
cve-2022-26354
cve-2021-4206
cve-2021-4207
cve-2022-0358
denial of service
arbitrary code
update

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

8.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

AI Score

7.2

Confidence

Low

EPSS

0.005

Percentile

77.4%


Debian Security Advisory DSA-5133-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
May 09, 2022 https://www.debian.org/security/faq


Package : qemu
CVE ID : CVE-2022-26353 CVE-2022-26354 CVE-2021-4206
CVE-2021-4207 CVE-2022-0358

Multiple security issues were discovered in QEMU, a fast processor
emulator, which could result in denial of service or the execution of
arbitrary code.

For the stable distribution (bullseye), this problem has been fixed in
version 1:5.2+dfsg-11+deb11u2.

We recommend that you upgrade your qemu packages.

For the detailed security status of qemu please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/qemu

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

8.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

AI Score

7.2

Confidence

Low

EPSS

0.005

Percentile

77.4%