openSUSE Security Update : qemu (openSUSE-2019-620) (Spectre)

high Nessus Plugin ID 123271

Language:

New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Synopsis

The remote openSUSE host is missing a security update.

Description

This update for qemu to version 2.11.2 fixes the following issues :

Security issue fixed :

- CVE-2018-11806: Fix heap buffer overflow issue that can happen while reassembling fragmented datagrams (bsc#1096223).

- CVE-2018-3639: Mitigation functionality for Speculative Store Bypass issue in x86 (bsc#1087082).

- CVE-2018-7550: Fix out of bounds read and write memory access, potentially leading to code execution (bsc#1083291)

Bug fixes :

- bsc#1091695: SEV guest will not lauchh with qemu-system-x86_64 version 2.11.1.

- bsc#1094898: qemu-guest-agent service doesn't work in version Leap 15.0.

- bsc#1094725: `virsh blockresize` does not work with Xen qdisks.

- bsc#1094913: QEMU crashes when starting a guest with more than 7.999TB.

This update was imported from the SUSE:SLE-15:Update update project.

Solution

Update the affected qemu packages.

See Also

https://features.opensuse.org/

https://bugzilla.opensuse.org/show_bug.cgi?id=1083291

https://bugzilla.opensuse.org/show_bug.cgi?id=1087082

https://bugzilla.opensuse.org/show_bug.cgi?id=1091695

https://bugzilla.opensuse.org/show_bug.cgi?id=1094725

https://bugzilla.opensuse.org/show_bug.cgi?id=1094898

https://bugzilla.opensuse.org/show_bug.cgi?id=1094913

https://bugzilla.opensuse.org/show_bug.cgi?id=1096223

Plugin Details

Severity: High

ID: 123271

File Name: openSUSE-2019-620.nasl

Version: 1.5

Type: local

Agent: unix

Published: 3/27/2019

Updated: 1/19/2021

Dependencies: ssh_get_info.nasl

Risk Information

CVSS Score Source: CVE-2018-11806

VPR

Risk Factor: High

Score: 7.3

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

CVSS v3

Risk Factor: High

Base Score: 8.2

Temporal Score: 7.4

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: cpe:2.3:o:novell:opensuse:15.0:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-arm:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-arm-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-curl:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-curl-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-rbd:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-rbd-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-debugsource:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-extra:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-extra-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-guest-agent:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-guest-agent-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-ipxe:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-kvm:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-lang:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-linux-user:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-linux-user-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-linux-user-debugsource:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-ppc:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-ppc-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-s390:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-s390-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-seabios:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-sgabios:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-testsuite:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-tools:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-tools-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-vgabios:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-x86:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-x86-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-dmg:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-dmg-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-iscsi:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-iscsi-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-ssh:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-ssh-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-ksm:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-debuginfo:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-gluster:*:*:*:*:*:*:*, p-cpe:2.3:a:novell:opensuse:qemu-block-gluster-debuginfo:*:*:*:*:*:*:*

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 3/23/2019

Vulnerability Publication Date: 3/1/2018

Reference Information

CVE: CVE-2018-7550, CVE-2018-3639, CVE-2018-11806