Lucene search
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2021-600.NASLHistoryMay 18, 2021 - 12:00 a.m.
openSUSE Security Update : qemu (openSUSE-2021-600)
2021-05-1800:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
CVSS2
4.7
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
CVSS3
6.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
AI Score
6.4
Confidence
High
EPSS
0.004
Percentile
72.7%
This update for qemu fixes the following issues :
-
CVE-2020-12829: Fix OOB access in sm501 device emulation (bsc#1172385)
-
CVE-2020-25723: Fix use-after-free in usb xhci packet handling (bsc#1178934)
-
CVE-2020-25084: Fix use-after-free in usb ehci packet handling (bsc#1176673)
-
CVE-2020-25625: Fix infinite loop (DoS) in usb hcd-ohci emulation (bsc#1176684)
-
CVE-2020-25624: Fix OOB access in usb hcd-ohci emulation (bsc#1176682)
-
CVE-2020-27617: Fix guest triggerable assert in shared network handling code (bsc#1178174)
-
CVE-2020-28916: Fix infinite loop (DoS) in e1000e device emulation (bsc#1179468)
-
CVE-2020-29443: Fix OOB access in atapi emulation (bsc#1181108)
-
CVE-2020-27821: Fix heap overflow in MSIx emulation (bsc#1179686)
-
CVE-2020-15469: Fix NULL pointer deref. (DoS) in mmio ops (bsc#1173612)
-
CVE-2021-20257: Fix infinite loop (DoS) in e1000 device emulation (bsc#1182577)
-
CVE-2021-3416: Fix OOB access (stack overflow) in rtl8139 NIC emulation (bsc#1182968)
-
CVE-2021-3416: Fix OOB access (stack overflow) in other NIC emulations (bsc#1182968)
-
CVE-2020-27616: Fix OOB access in ati-vga emulation (bsc#1178400)
-
CVE-2020-29129: Fix OOB access in SLIRP ARP/NCSI packet processing (bsc#1179466, CVE-2020-29130, bsc#1179467)
-
Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425)
-
Add split-provides through forsplits/13 to cover updates of SLE15-SP2 to SLE15-SP3, and openSUSE equivalents (bsc#1184064)
-
Added a few more usability improvements for our git packaging workflow
This update was imported from the SUSE:SLE-15-SP2:Update update project.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2021-600.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(149640);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/01");
script_cve_id(
"CVE-2020-12829",
"CVE-2020-15469",
"CVE-2020-25084",
"CVE-2020-25624",
"CVE-2020-25625",
"CVE-2020-25723",
"CVE-2020-27616",
"CVE-2020-27617",
"CVE-2020-27821",
"CVE-2020-28916",
"CVE-2020-29129",
"CVE-2020-29130",
"CVE-2020-29443",
"CVE-2021-20257",
"CVE-2021-3416"
);
script_name(english:"openSUSE Security Update : qemu (openSUSE-2021-600)");
script_set_attribute(attribute:"synopsis", value:
"The remote openSUSE host is missing a security update.");
script_set_attribute(attribute:"description", value:
"This update for qemu fixes the following issues :
- CVE-2020-12829: Fix OOB access in sm501 device emulation
(bsc#1172385)
- CVE-2020-25723: Fix use-after-free in usb xhci packet
handling (bsc#1178934)
- CVE-2020-25084: Fix use-after-free in usb ehci packet
handling (bsc#1176673)
- CVE-2020-25625: Fix infinite loop (DoS) in usb hcd-ohci
emulation (bsc#1176684)
- CVE-2020-25624: Fix OOB access in usb hcd-ohci emulation
(bsc#1176682)
- CVE-2020-27617: Fix guest triggerable assert in shared
network handling code (bsc#1178174)
- CVE-2020-28916: Fix infinite loop (DoS) in e1000e device
emulation (bsc#1179468)
- CVE-2020-29443: Fix OOB access in atapi emulation
(bsc#1181108)
- CVE-2020-27821: Fix heap overflow in MSIx emulation
(bsc#1179686)
- CVE-2020-15469: Fix NULL pointer deref. (DoS) in mmio
ops (bsc#1173612)
- CVE-2021-20257: Fix infinite loop (DoS) in e1000 device
emulation (bsc#1182577)
- CVE-2021-3416: Fix OOB access (stack overflow) in
rtl8139 NIC emulation (bsc#1182968)
- CVE-2021-3416: Fix OOB access (stack overflow) in other
NIC emulations (bsc#1182968)
- CVE-2020-27616: Fix OOB access in ati-vga emulation
(bsc#1178400)
- CVE-2020-29129: Fix OOB access in SLIRP ARP/NCSI packet
processing (bsc#1179466, CVE-2020-29130, bsc#1179467)
- Fix package scripts to not use hard coded paths for
temporary working directories and log files
(bsc#1182425)
- Add split-provides through forsplits/13 to cover updates
of SLE15-SP2 to SLE15-SP3, and openSUSE equivalents
(bsc#1184064)
- Added a few more usability improvements for our git
packaging workflow
This update was imported from the SUSE:SLE-15-SP2:Update update
project.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1172385");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1173612");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1176673");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1176682");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1176684");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1178174");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1178400");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1178934");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1179466");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1179467");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1179468");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1179686");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1181108");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1182425");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1182577");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1182968");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1184064");
script_set_attribute(attribute:"solution", value:
"Update the affected qemu packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-25624");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/07/02");
script_set_attribute(attribute:"patch_publication_date", value:"2021/04/23");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/05/18");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-arm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-arm-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-audio-alsa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-audio-alsa-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-audio-pa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-audio-pa-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-audio-sdl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-audio-sdl-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-curl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-curl-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-dmg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-dmg-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-gluster");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-gluster-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-iscsi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-iscsi-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-nfs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-nfs-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-rbd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-rbd-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-ssh");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-ssh-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-extra-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-guest-agent");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-guest-agent-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ipxe");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ksm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-kvm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-lang");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-linux-user");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-linux-user-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-linux-user-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-microvm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ppc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ppc-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-s390");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-s390-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-seabios");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-sgabios");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-testsuite");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-tools-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ui-curses");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ui-curses-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ui-gtk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ui-gtk-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ui-sdl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ui-sdl-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ui-spice-app");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ui-spice-app-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-vgabios");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-vhost-user-gpu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-vhost-user-gpu-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-x86");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-x86-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:15.2");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE15\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "15.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(x86_64)$") audit(AUDIT_ARCH_NOT, "x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-arm-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-arm-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-audio-alsa-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-audio-alsa-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-audio-pa-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-audio-pa-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-audio-sdl-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-audio-sdl-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-curl-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-curl-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-dmg-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-dmg-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-gluster-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-gluster-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-iscsi-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-iscsi-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-nfs-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-nfs-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-rbd-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-rbd-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-ssh-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-block-ssh-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-debugsource-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-extra-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-extra-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-guest-agent-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-guest-agent-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ipxe-1.0.0+-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ksm-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-kvm-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-lang-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-linux-user-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-linux-user-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-linux-user-debugsource-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-microvm-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ppc-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ppc-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-s390-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-s390-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-seabios-1.12.1+-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-sgabios-8-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-testsuite-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-tools-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-tools-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ui-curses-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ui-curses-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ui-gtk-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ui-gtk-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ui-sdl-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ui-sdl-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ui-spice-app-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-ui-spice-app-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-vgabios-1.12.1+-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-vhost-user-gpu-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-vhost-user-gpu-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-x86-4.2.1-lp152.9.12.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"qemu-x86-debuginfo-4.2.1-lp152.9.12.1") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "qemu / qemu-arm / qemu-arm-debuginfo / qemu-audio-alsa / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | opensuse | qemu | p-cpe:/a:novell:opensuse:qemu |
| novell | opensuse | qemu-arm | p-cpe:/a:novell:opensuse:qemu-arm |
| novell | opensuse | qemu-arm-debuginfo | p-cpe:/a:novell:opensuse:qemu-arm-debuginfo |
| novell | opensuse | qemu-audio-alsa | p-cpe:/a:novell:opensuse:qemu-audio-alsa |
| novell | opensuse | qemu-audio-alsa-debuginfo | p-cpe:/a:novell:opensuse:qemu-audio-alsa-debuginfo |
| novell | opensuse | qemu-audio-pa | p-cpe:/a:novell:opensuse:qemu-audio-pa |
| novell | opensuse | qemu-audio-pa-debuginfo | p-cpe:/a:novell:opensuse:qemu-audio-pa-debuginfo |
| novell | opensuse | qemu-audio-sdl | p-cpe:/a:novell:opensuse:qemu-audio-sdl |
| novell | opensuse | qemu-audio-sdl-debuginfo | p-cpe:/a:novell:opensuse:qemu-audio-sdl-debuginfo |
| novell | opensuse | qemu-block-curl | p-cpe:/a:novell:opensuse:qemu-block-curl |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15469
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25084
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25624
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25625
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25723
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27616
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27617
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27821
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28916
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29129
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29130
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29443
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20257
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3416
bugzilla.opensuse.org/show_bug.cgi?id=1172385
bugzilla.opensuse.org/show_bug.cgi?id=1173612
bugzilla.opensuse.org/show_bug.cgi?id=1176673
bugzilla.opensuse.org/show_bug.cgi?id=1176682
bugzilla.opensuse.org/show_bug.cgi?id=1176684
bugzilla.opensuse.org/show_bug.cgi?id=1178174
bugzilla.opensuse.org/show_bug.cgi?id=1178400
bugzilla.opensuse.org/show_bug.cgi?id=1178934
bugzilla.opensuse.org/show_bug.cgi?id=1179466
bugzilla.opensuse.org/show_bug.cgi?id=1179467
bugzilla.opensuse.org/show_bug.cgi?id=1179468
bugzilla.opensuse.org/show_bug.cgi?id=1179686
bugzilla.opensuse.org/show_bug.cgi?id=1181108
bugzilla.opensuse.org/show_bug.cgi?id=1182425
bugzilla.opensuse.org/show_bug.cgi?id=1182577
bugzilla.opensuse.org/show_bug.cgi?id=1182968
bugzilla.opensuse.org/show_bug.cgi?id=1184064
Related
nessus
nessus
SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2021:1243-1)
2021-04-19 00:00:00
EulerOS 2.0 SP9 : qemu (EulerOS-SA-2021-1275)
2021-02-05 00:00:00
SUSE SLES12 Security Update : qemu (SUSE-SU-2021:1242-1)
2021-04-19 00:00:00
openvas
openvas
openSUSE: Security Advisory for qemu (openSUSE-SU-2021:0600-1)
2021-04-24 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1243-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2021-1275)
2021-02-05 00:00:00
suse
suse
Security update for qemu (important)
2021-04-23 00:00:00
Security update for qemu (important)
2021-07-11 00:00:00
osv
osv
qemu vulnerabilities
2020-11-30 12:25:14
qemu - security update
2020-11-29 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2020-11-30 00:00:00
QEMU vulnerabilities
2021-02-08 00:00:00
amazon
amazon
Medium: qemu
2021-06-16 20:37:00
archlinux
archlinux
[ASA-202012-26] qemu: multiple issues
2020-12-16 00:00:00
[ASA-202012-7] libslirp: information disclosure
2020-12-05 00:00:00
debian
debian
[SECURITY] [DLA 2469-1] qemu security update
2020-11-29 15:59:29
[SECURITY] [DLA 2560-1] qemu security update
2021-02-18 16:57:32
[SECURITY] [DLA 3099-1] qemu security update
2022-09-05 03:28:05
redhat
redhat
oraclelinux
oraclelinux
virt:ol and virt-devel:rhel security, bug fix, and enhancement update
2021-05-25 00:00:00
qemu security update
2021-06-06 00:00:00
qemu security update
2021-03-12 00:00:00
rocky
rocky
virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2021-05-18 06:02:26
almalinux
almalinux
fedora
fedora
[SECURITY] Fedora 32 Update: libslirp-4.3.1-3.fc32
2020-12-13 02:35:41
[SECURITY] Fedora 33 Update: libslirp-4.3.1-3.fc33
2020-12-13 02:10:05
citrix
citrix
Citrix Hypervisor Security Update
2021-06-23 11:06:42
nvd
nvd
ubuntucve
ubuntucve
cve
cve
prion
prion
Design/Logic Flaw
2020-11-06 08:15:00
Null pointer dereference
2020-12-04 07:15:00
Out-of-bounds
2020-12-08 22:15:00
cvelist
cvelist
cbl_mariner
cbl_mariner
CVE-2020-12829 affecting package qemu-kvm 4.2.0-48
2020-11-30 19:31:04
CVE-2020-27821 affecting package qemu-kvm 4.2.0-48
2021-01-11 21:50:06
alpinelinux
alpinelinux
debiancve
debiancve
veracode
veracode
Denial Of Service (DoS)
2020-12-06 02:23:57
Denial Of Service (DoS)
2020-12-06 02:34:31
Denial Of Service (DoS)
2020-12-06 02:35:59
redhatcve
redhatcve
f5
f5
K41142448 : QEMU vulnerability CVE-2020-27617
2020-12-02 00:00:00
centos
centos
qemu security update
2021-06-14 18:42:09
CVSS2
4.7
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
CVSS3
6.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
AI Score
6.4
Confidence
High
EPSS
0.004
Percentile
72.7%
Related for OPENSUSE-2021-600.NASL