Lucene search
Copyright (C) 2023 Greenbone AGOPENVAS:13614125623114202338001HistorySep 28, 2023 - 12:00 a.m.
SUSE: Security Advisory (SUSE-SU-2023:3800-1)
2023-09-2800:00:00
Copyright (C) 2023 Greenbone AG
plugins.openvas.org
8
suse
security
advisory
'qemu'
package
update
cve-2019-13754
cve-2020-13754
cve-2021-3750
cve-2021-3929
cve-2022-1050
cve-2022-26354
cve-2023-0330
cve-2023-2861
cve-2023-3180
cve-2023-3354
caas platform 4.0
linux enterprise high performance computing 15-sp1
linux enterprise server 15-sp1
linux enterprise server for sap applications 15-sp1
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
6.9 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
66.1%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.4.2023.3800.1");
script_cve_id("CVE-2019-13754", "CVE-2020-13754", "CVE-2021-3750", "CVE-2021-3929", "CVE-2022-1050", "CVE-2022-26354", "CVE-2023-0330", "CVE-2023-2861", "CVE-2023-3180", "CVE-2023-3354");
script_tag(name:"creation_date", value:"2023-09-28 09:48:31 +0000 (Thu, 28 Sep 2023)");
script_version("2024-02-02T14:37:52+0000");
script_tag(name:"last_modification", value:"2024-02-02 14:37:52 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"4.6");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:P/I:P/A:P");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2022-04-08 12:26:12 +0000 (Fri, 08 Apr 2022)");
script_name("SUSE: Security Advisory (SUSE-SU-2023:3800-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2023 Greenbone AG");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse_sles", "ssh/login/rpms", re:"ssh/login/release=(SLES15\.0SP1)");
script_xref(name:"Advisory-ID", value:"SUSE-SU-2023:3800-1");
script_xref(name:"URL", value:"https://www.suse.com/support/update/announcement/2023/suse-su-20233800-1/");
script_tag(name:"summary", value:"The remote host is missing an update for the 'qemu' package(s) announced via the SUSE-SU-2023:3800-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update for qemu fixes the following issues:
CVE-2022-26354: Fixed a memory leak due to a missing virtqueue detach on error. (bsc#1198712)
CVE-2021-3929: Fixed an use-after-free in nvme DMA reentrancy issue. (bsc#1193880)
CVE-2023-0330: Fixed a stack overflow due to a DMA reentrancy issue. (bsc#1207205)
CVE-2020-13754: Fixed a DoS due to an OOB access during mmio operations. (bsc#1172382)
CVE-2023-3354: Fixed a remote unauthenticated DoS due to an improper I/O watch removal in VNC TLS handshake. (bsc#1212850)
CVE-2023-3180: Fixed a heap buffer overflow in virtio_crypto_sym_op_helper(). (bsc#1213925)
CVE-2023-2861: Fixed improper access control on special files in 9pfs (bsc#1212968).
CVE-2022-1050: Fixed use-after-free issue in pvrdma_exec_cmd() (bsc#1197653).
CVE-2021-3750: Fixed DMA reentrancy issue leads to use-after-free in hcd-ehci (bsc#1190011).
The following non-security bug was fixed:
Prepare for binutils update to 2.41 update (bsc#1215311).");
script_tag(name:"affected", value:"'qemu' package(s) on SUSE CaaS Platform 4.0, SUSE Linux Enterprise High Performance Computing 15-SP1, SUSE Linux Enterprise Server 15-SP1, SUSE Linux Enterprise Server for SAP Applications 15-SP1.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "SLES15.0SP1") {
if(!isnull(res = isrpmvuln(pkg:"qemu", rpm:"qemu~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-arm", rpm:"qemu-arm~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-arm-debuginfo", rpm:"qemu-arm-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-audio-alsa", rpm:"qemu-audio-alsa~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-audio-alsa-debuginfo", rpm:"qemu-audio-alsa-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-audio-oss", rpm:"qemu-audio-oss~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-audio-oss-debuginfo", rpm:"qemu-audio-oss-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-audio-pa", rpm:"qemu-audio-pa~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-audio-pa-debuginfo", rpm:"qemu-audio-pa-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-block-curl", rpm:"qemu-block-curl~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-block-curl-debuginfo", rpm:"qemu-block-curl-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-block-iscsi", rpm:"qemu-block-iscsi~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-block-iscsi-debuginfo", rpm:"qemu-block-iscsi-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-block-rbd", rpm:"qemu-block-rbd~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-block-rbd-debuginfo", rpm:"qemu-block-rbd-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-block-ssh", rpm:"qemu-block-ssh~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-block-ssh-debuginfo", rpm:"qemu-block-ssh-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-debuginfo", rpm:"qemu-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-debugsource", rpm:"qemu-debugsource~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-guest-agent", rpm:"qemu-guest-agent~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-guest-agent-debuginfo", rpm:"qemu-guest-agent-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-ipxe", rpm:"qemu-ipxe~1.0.0+~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-kvm", rpm:"qemu-kvm~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-lang", rpm:"qemu-lang~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-ppc", rpm:"qemu-ppc~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-ppc-debuginfo", rpm:"qemu-ppc-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-s390", rpm:"qemu-s390~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-s390-debuginfo", rpm:"qemu-s390-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-seabios", rpm:"qemu-seabios~1.12.0_0_ga698c89~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-sgabios", rpm:"qemu-sgabios~8~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-tools", rpm:"qemu-tools~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-tools-debuginfo", rpm:"qemu-tools-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-ui-curses", rpm:"qemu-ui-curses~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-ui-curses-debuginfo", rpm:"qemu-ui-curses-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-ui-gtk", rpm:"qemu-ui-gtk~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-ui-gtk-debuginfo", rpm:"qemu-ui-gtk-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-vgabios", rpm:"qemu-vgabios~1.12.0_0_ga698c89~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-x86", rpm:"qemu-x86~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"qemu-x86-debuginfo", rpm:"qemu-x86-debuginfo~3.1.1.1~150100.80.51.5", rls:"SLES15.0SP1"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
nessus
nessus
SUSE SLES15 Security Update : qemu (SUSE-SU-2023:3800-1)
2023-09-28 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : qemu (SUSE-SU-2023:3721-1)
2023-09-22 00:00:00
EulerOS 2.0 SP9 : qemu (EulerOS-SA-2023-2887)
2024-01-16 00:00:00
openvas
openvas
openSUSE: Security Advisory for qemu (SUSE-SU-2023:3721-1)
2024-03-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:3721-1)
2023-09-22 00:00:00
Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2023-2929)
2023-10-10 00:00:00
prion
prion
Design/Logic Flaw
2022-08-25 20:15:00
Design/Logic Flaw
2019-12-10 22:15:00
Out-of-bounds
2020-06-02 14:15:00
cve
cve
debiancve
debiancve
ubuntucve
ubuntucve
cvelist
cvelist
nvd
nvd
osv
osv
CVE-2021-3929
2022-08-25 20:15:09
qemu - security update
2024-03-11 00:00:00
qemu - security update
2023-10-05 00:00:00
redhatcve
redhatcve
debian
debian
[SECURITY] [DLA 3759-1] qemu security update
2024-03-11 17:27:07
[SECURITY] [DLA 3604-1] qemu security update
2023-10-05 16:13:52
amazon
amazon
Medium: qemu
2023-07-17 17:40:00
oraclelinux
oraclelinux
virt:kvm_utils1 security update
2024-02-12 00:00:00
qemu security update
2023-09-22 00:00:00
qemu security update
2023-09-22 00:00:00
redhat
redhat
(RHSA-2024:0404) Important: virt:rhel and virt-devel:rhel security update
2024-01-24 14:40:17
(RHSA-2023:5094) Important: qemu-kvm security and bug fix update
2023-09-12 07:46:21
(RHSA-2023:6227) Important: qemu-kvm security update
2023-11-01 08:58:37
cbl_mariner
cbl_mariner
CVE-2020-13754 affecting package qemu-kvm 4.2.0-48
2020-11-30 19:31:04
CVE-2022-26354 affecting package qemu for versions less than 6.2.0-18
2024-03-19 17:21:46
CVE-2021-3929 affecting package qemu for versions less than 6.2.0-13
2023-01-17 16:47:04
veracode
veracode
Out Of Bound Reads
2022-04-09 08:42:10
Denial Of Service (DoS)
2020-12-06 04:23:32
Remote Code Execution (RCE)
2022-04-26 21:47:02
f5
f5
K50401227 : Linux kernel vulnerability CVE-2022-26354
2022-04-19 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: qemu-7.2.5-1.fc38
2023-08-29 01:35:27
[SECURITY] Fedora 36 Update: qemu-6.2.0-15.fc36
2022-09-23 01:21:49
ubuntu
ubuntu
QEMU vulnerabilities
2023-06-19 00:00:00
QEMU regression
2021-02-22 00:00:00
alpinelinux
alpinelinux
cnvd
cnvd
QEMU Denial of Service Vulnerability (CNVD-2022-84161)
2022-03-18 00:00:00
QEMU Resource Management Error Vulnerability (CNVD-2022-84160)
2022-05-07 00:00:00
githubexploit
githubexploit
Exploit for Use After Free in Qemu
2022-05-13 05:33:28
redos
redos
ROS-20230825-05
2023-08-25 00:00:00
almalinux
almalinux
Important: qemu-kvm security and bug fix update
2023-09-12 00:00:00
vulnrichment
vulnrichment
CVE-2023-2861 Qemu: 9pfs: improper access control on special files
2023-12-06 06:19:40
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
6.9 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
66.1%
Related for OPENVAS:13614125623114202338001