{"id":"SUSE-SU-2019:14052-1","summary":"Security update for kvm","details":"This update for kvm fixes the following issues:\n\n- CVE-2019-9824: Fixed an information leak in slirp (bsc#1129622)\n- CVE-2018-20815: Fix DOS possibility in device tree processing (bsc#1130675)\n- CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091: Added x86 cpu feature 'md-clear' (bsc#1111331)\n\n","modified":"2026-02-04T03:00:34.537391Z","published":"2019-05-17T11:14:37Z","related":["CVE-2018-12126","CVE-2018-12127","CVE-2018-12130","CVE-2018-20815","CVE-2019-11091","CVE-2019-9824"],"upstream":["CVE-2018-12126","CVE-2018-12127","CVE-2018-12130","CVE-2018-20815","CVE-2019-11091","CVE-2019-9824"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2019/suse-su-201914052-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1111331"},{"type":"REPORT","url":"https://bugzilla.suse.com/1129622"},{"type":"REPORT","url":"https://bugzilla.suse.com/1130675"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-12126"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-12127"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-12130"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-20815"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-11091"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-9824"}],"affected":[{"package":{"name":"kvm","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kvm&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.4.2-60.24.1"}]}],"ecosystem_specific":{"binaries":[{"kvm":"1.4.2-60.24.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14052-1.json"}}],"schema_version":"1.7.3"}