Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Производитель ПО
Наименование ПО
qemu
(any)
qemu-arm
(any)
qemu-arm-debuginfo
(any)
qemu-block-curl
(any)
qemu-block-curl-debuginfo
(any)
qemu-block-iscsi
(any)
qemu-block-iscsi-debuginfo
(any)
qemu-block-rbd
(any)
qemu-block-rbd-debuginfo
(any)
qemu-block-ssh
(any)
qemu-block-ssh-debuginfo
(any)
qemu-debugsource
(any)
qemu-guest-agent
(any)
qemu-guest-agent-debuginfo
(any)
qemu-ipxe
(any)
qemu-kvm
(any)
qemu-lang
(any)
qemu-ppc
(any)
qemu-ppc-debuginfo
(any)
qemu-s390
(any)
qemu-s390-debuginfo
(any)
qemu-seabios
(any)
qemu-sgabios-8
(any)
qemu-tools
(any)
qemu-tools-debuginfo
(any)
qemu-vgabios
(any)
qemu-x86
(any)
qemu-x86-debuginfo
(any)
Описание
Уведомление безопасности об уязвимостях SUSE CaaS Platform 3.0, SUSE Linux Enterprise Server 12-SP3, SUSE CaaS Platform ALL, SUSE Linux Enterprise Desktop 12-SP3
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE CaaS Platform 3.0:
x86_64:
qemu-debugsource - 2.9.1-6.28.1
qemu-guest-agent-debuginfo - 2.9.1-6.28.1
qemu-guest-agent - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
s390x, x86_64:
qemu-kvm - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
ppc64le:
qemu-ppc-debuginfo - 2.9.1-6.28.1
qemu-ppc - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
x86_64:
qemu-x86 - 2.9.1-6.28.1
qemu-x86-debuginfo - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
aarch64:
qemu-arm-debuginfo - 2.9.1-6.28.1
qemu-arm - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
aarch64, x86_64:
qemu-block-rbd - 2.9.1-6.28.1
qemu-block-rbd-debuginfo - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
noarch:
qemu-seabios - 1.10.2-6.28.1
qemu-sgabios-8 - 6.28.1
qemu-vgabios - 1.10.2-6.28.1
qemu-ipxe - 1.0.0+-6.28.1
SUSE Linux Enterprise Server 12-SP3:
aarch64, ppc64le, s390x, x86_64:
qemu-block-ssh-debuginfo - 2.9.1-6.28.1
qemu-tools-debuginfo - 2.9.1-6.28.1
qemu - 2.9.1-6.28.1
qemu-debugsource - 2.9.1-6.28.1
qemu-block-curl-debuginfo - 2.9.1-6.28.1
qemu-tools - 2.9.1-6.28.1
qemu-guest-agent-debuginfo - 2.9.1-6.28.1
qemu-block-ssh - 2.9.1-6.28.1
qemu-lang - 2.9.1-6.28.1
qemu-block-curl - 2.9.1-6.28.1
qemu-block-iscsi - 2.9.1-6.28.1
qemu-block-iscsi-debuginfo - 2.9.1-6.28.1
qemu-guest-agent - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
s390x:
qemu-s390 - 2.9.1-6.28.1
qemu-s390-debuginfo - 2.9.1-6.28.1
SUSE CaaS Platform ALL:
x86_64:
qemu-debugsource - 2.9.1-6.28.1
qemu-guest-agent-debuginfo - 2.9.1-6.28.1
qemu-guest-agent - 2.9.1-6.28.1
SUSE Linux Enterprise Desktop 12-SP3:
x86_64:
qemu-x86 - 2.9.1-6.28.1
qemu-tools-debuginfo - 2.9.1-6.28.1
qemu - 2.9.1-6.28.1
qemu-debugsource - 2.9.1-6.28.1
qemu-block-curl-debuginfo - 2.9.1-6.28.1
qemu-tools - 2.9.1-6.28.1
qemu-kvm - 2.9.1-6.28.1
qemu-block-curl - 2.9.1-6.28.1
SUSE Linux Enterprise Desktop 12-SP3:
noarch:
qemu-seabios - 1.10.2-6.28.1
qemu-sgabios-8 - 6.28.1
qemu-vgabios - 1.10.2-6.28.1
qemu-ipxe - 1.0.0+-6.28.1
SUSE CaaS Platform 3.0:
x86_64:
qemu-debugsource - 2.9.1-6.28.1
qemu-guest-agent-debuginfo - 2.9.1-6.28.1
qemu-guest-agent - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
s390x, x86_64:
qemu-kvm - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
ppc64le:
qemu-ppc-debuginfo - 2.9.1-6.28.1
qemu-ppc - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
x86_64:
qemu-x86 - 2.9.1-6.28.1
qemu-x86-debuginfo - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
aarch64:
qemu-arm-debuginfo - 2.9.1-6.28.1
qemu-arm - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
aarch64, x86_64:
qemu-block-rbd - 2.9.1-6.28.1
qemu-block-rbd-debuginfo - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
noarch:
qemu-seabios - 1.10.2-6.28.1
qemu-sgabios-8 - 6.28.1
qemu-vgabios - 1.10.2-6.28.1
qemu-ipxe - 1.0.0+-6.28.1
SUSE Linux Enterprise Server 12-SP3:
aarch64, ppc64le, s390x, x86_64:
qemu-block-ssh-debuginfo - 2.9.1-6.28.1
qemu-tools-debuginfo - 2.9.1-6.28.1
qemu - 2.9.1-6.28.1
qemu-debugsource - 2.9.1-6.28.1
qemu-block-curl-debuginfo - 2.9.1-6.28.1
qemu-tools - 2.9.1-6.28.1
qemu-guest-agent-debuginfo - 2.9.1-6.28.1
qemu-block-ssh - 2.9.1-6.28.1
qemu-lang - 2.9.1-6.28.1
qemu-block-curl - 2.9.1-6.28.1
qemu-block-iscsi - 2.9.1-6.28.1
qemu-block-iscsi-debuginfo - 2.9.1-6.28.1
qemu-guest-agent - 2.9.1-6.28.1
SUSE Linux Enterprise Server 12-SP3:
s390x:
qemu-s390 - 2.9.1-6.28.1
qemu-s390-debuginfo - 2.9.1-6.28.1
SUSE CaaS Platform ALL:
x86_64:
qemu-debugsource - 2.9.1-6.28.1
qemu-guest-agent-debuginfo - 2.9.1-6.28.1
qemu-guest-agent - 2.9.1-6.28.1
SUSE Linux Enterprise Desktop 12-SP3:
x86_64:
qemu-x86 - 2.9.1-6.28.1
qemu-tools-debuginfo - 2.9.1-6.28.1
qemu - 2.9.1-6.28.1
qemu-debugsource - 2.9.1-6.28.1
qemu-block-curl-debuginfo - 2.9.1-6.28.1
qemu-tools - 2.9.1-6.28.1
qemu-kvm - 2.9.1-6.28.1
qemu-block-curl - 2.9.1-6.28.1
SUSE Linux Enterprise Desktop 12-SP3:
noarch:
qemu-seabios - 1.10.2-6.28.1
qemu-sgabios-8 - 6.28.1
qemu-vgabios - 1.10.2-6.28.1
qemu-ipxe - 1.0.0+-6.28.1
Ссылки
http://lists.suse.com/pipermail/sle-security-updates/2019-March/005184.html
https://bugzilla.suse.com/1056334
https://bugzilla.suse.com/1056386
https://bugzilla.suse.com/1084604
https://bugzilla.suse.com/1113231
https://bugzilla.suse.com/1114957
https://bugzilla.suse.com/1116717
https://bugzilla.suse.com/1117275
https://bugzilla.suse.com/1119493
https://bugzilla.suse.com/1121600
https://bugzilla.suse.com/1123156
Источник: CVE
Наименование: CVE-2019-6778
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778
Источник: CVE
Наименование: CVE-2018-18954
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954
Источник: CVE
Наименование: CVE-2018-19364
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364
Источник: CVE
Наименование: CVE-2017-13672
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672
Источник: CVE
Наименование: CVE-2018-16872
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872
Источник: CVE
Наименование: CVE-2017-13673
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13673
Источник: CVE
Наименование: CVE-2018-7858
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7858
Источник: CVE
Наименование: CVE-2018-19489
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489
https://bugzilla.suse.com/1056334
https://bugzilla.suse.com/1056386
https://bugzilla.suse.com/1084604
https://bugzilla.suse.com/1113231
https://bugzilla.suse.com/1114957
https://bugzilla.suse.com/1116717
https://bugzilla.suse.com/1117275
https://bugzilla.suse.com/1119493
https://bugzilla.suse.com/1121600
https://bugzilla.suse.com/1123156
Источник: CVE
Наименование: CVE-2019-6778
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778
Источник: CVE
Наименование: CVE-2018-18954
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954
Источник: CVE
Наименование: CVE-2018-19364
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364
Источник: CVE
Наименование: CVE-2017-13672
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672
Источник: CVE
Наименование: CVE-2018-16872
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872
Источник: CVE
Наименование: CVE-2017-13673
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13673
Источник: CVE
Наименование: CVE-2018-7858
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7858
Источник: CVE
Наименование: CVE-2018-19489
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489