Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:0930-1

Опубликовано: 22 мар. 2022
Источник: suse-cvrf

Описание

Security update for qemu

This update for qemu fixes the following issues:

  • CVE-2022-0358: Fixed a potential privilege escalation via virtiofsd (bsc#1195161).
  • CVE-2021-3930: Fixed a potential denial of service in the emulated SCSI device (bsc#1192525).

Non-security fixes:

  • Fixed a kernel data corruption via a long kernel boot cmdline (bsc#1196737).
  • Included vmxcap in the qemu-tools package (bsc#1193364).
  • Fixed package dependencies (bsc#1196087).
  • Fixed an issue were PowerPC firmwares would not be built for non-PowerPC builds (bsc#1193545).
  • Fixed multiple issues in I/O (bsc#1178049 bsc#1194938).

Список пакетов

Container suse/sle-micro-rancher/5.2:latest
qemu-guest-agent-5.2.0-150300.112.4
Image SLES15-SP3-EC2-ECS-HVM
qemu-tools-5.2.0-150300.112.4
SUSE Linux Enterprise Micro 5.1
qemu-5.2.0-150300.112.4
qemu-arm-5.2.0-150300.112.4
qemu-ipxe-1.0.0+-150300.112.4
qemu-s390x-5.2.0-150300.112.4
qemu-seabios-1.14.0_0_g155821a-150300.112.4
qemu-sgabios-8-150300.112.4
qemu-tools-5.2.0-150300.112.4
qemu-vgabios-1.14.0_0_g155821a-150300.112.4
qemu-x86-5.2.0-150300.112.4
SUSE Linux Enterprise Module for Basesystem 15 SP3
qemu-tools-5.2.0-150300.112.4
SUSE Linux Enterprise Module for Server Applications 15 SP3
qemu-5.2.0-150300.112.4
qemu-SLOF-5.2.0-150300.112.4
qemu-arm-5.2.0-150300.112.4
qemu-audio-alsa-5.2.0-150300.112.4
qemu-audio-pa-5.2.0-150300.112.4
qemu-audio-spice-5.2.0-150300.112.4
qemu-block-curl-5.2.0-150300.112.4
qemu-block-iscsi-5.2.0-150300.112.4
qemu-block-rbd-5.2.0-150300.112.4
qemu-block-ssh-5.2.0-150300.112.4
qemu-chardev-baum-5.2.0-150300.112.4
qemu-chardev-spice-5.2.0-150300.112.4
qemu-guest-agent-5.2.0-150300.112.4
qemu-hw-display-qxl-5.2.0-150300.112.4
qemu-hw-display-virtio-gpu-5.2.0-150300.112.4
qemu-hw-display-virtio-gpu-pci-5.2.0-150300.112.4
qemu-hw-display-virtio-vga-5.2.0-150300.112.4
qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.112.4
qemu-hw-usb-redirect-5.2.0-150300.112.4
qemu-ipxe-1.0.0+-150300.112.4
qemu-ksm-5.2.0-150300.112.4
qemu-kvm-5.2.0-150300.112.4
qemu-lang-5.2.0-150300.112.4
qemu-ppc-5.2.0-150300.112.4
qemu-s390x-5.2.0-150300.112.4
qemu-seabios-1.14.0_0_g155821a-150300.112.4
qemu-sgabios-8-150300.112.4
qemu-skiboot-5.2.0-150300.112.4
qemu-ui-curses-5.2.0-150300.112.4
qemu-ui-gtk-5.2.0-150300.112.4
qemu-ui-opengl-5.2.0-150300.112.4
qemu-ui-spice-app-5.2.0-150300.112.4
qemu-ui-spice-core-5.2.0-150300.112.4
qemu-vgabios-1.14.0_0_g155821a-150300.112.4
qemu-x86-5.2.0-150300.112.4

Ссылки

Описание

An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). A malicious guest could use this flaw to potentially crash QEMU, resulting in a denial of service condition.

Затронутые продукты
Container suse/sle-micro-rancher/5.2:latest:qemu-guest-agent-5.2.0-150300.112.4
Image SLES15-SP3-EC2-ECS-HVM:qemu-tools-5.2.0-150300.112.4
SUSE Linux Enterprise Micro 5.1:qemu-5.2.0-150300.112.4
SUSE Linux Enterprise Micro 5.1:qemu-arm-5.2.0-150300.112.4
Ссылки

Описание

A flaw was found in the QEMU virtio-fs shared file system daemon (virtiofsd) implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of the group. This could allow a malicious unprivileged user inside the guest to gain access to resources accessible to the root group, potentially escalating their privileges within the guest. A malicious local user in the host might also leverage this unexpected executable file created by the guest to escalate their privileges on the host system.

Затронутые продукты
Container suse/sle-micro-rancher/5.2:latest:qemu-guest-agent-5.2.0-150300.112.4
Image SLES15-SP3-EC2-ECS-HVM:qemu-tools-5.2.0-150300.112.4
SUSE Linux Enterprise Micro 5.1:qemu-5.2.0-150300.112.4
SUSE Linux Enterprise Micro 5.1:qemu-arm-5.2.0-150300.112.4
Ссылки
Уязвимость SUSE-SU-2022:0930-1