SUSE-SU-2019:14052-1

See a problem?
Please try reporting it to the source first.

Source

https://www.suse.com/support/update/announcement/2019/suse-su-201914052-1/

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14052-1.json

JSON Data

https://api.test.osv.dev/v1/vulns/SUSE-SU-2019:14052-1

Upstream

CVE-2018-12126

CVE-2018-12127

CVE-2018-12130

CVE-2018-20815

CVE-2019-11091

CVE-2019-9824

Related

Published

2019-05-17T11:14:37Z

Modified

2025-05-08T17:13:44.591002Z

Summary

Security update for kvm

Details

This update for kvm fixes the following issues:

CVE-2019-9824: Fixed an information leak in slirp (bsc#1129622)
CVE-2018-20815: Fix DOS possibility in device tree processing (bsc#1130675)
CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091: Added x86 cpu feature 'md-clear' (bsc#1111331)

References

Affected packages

SUSE:Linux Enterprise Server 11 SP4-LTSS / kvm

Package

Name: kvm
Purl: pkg:rpm/suse/kvm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.4.2-60.24.1

Ecosystem specific

{
    "binaries": [
        {
            "kvm": "1.4.2-60.24.1"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14052-1.json"