[USN-3679-1] QEMU update
Severity
Medium
Affected Packages
52
CVEs
1
Side channel execution mitigations were added to QEMU.
Ken Johnson and Jann Horn independently discovered that microprocessors
utilizing speculative execution of a memory read may allow unauthorized
memory reads via sidechannel attacks. An attacker in the guest could use
this to expose sensitive guest information, including kernel memory. This
update allows QEMU to expose new CPU features added by AMD microcode
updates to guests on amd64 and i386.
- ID
- USN-3679-1
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-3679-1
- Published
-
2018-06-12T11:21:04
(6 years ago) - Modified
-
2018-06-12T11:21:04
(6 years ago) - Other Advisories
-
- ALAS-2018-1034
- ALAS-2018-1037
- ALAS-2018-1038
- ALAS-2018-1039
- ALAS2-2018-1033
- ALAS2-2018-1034
- ALAS2-2018-1037
- ALAS2-2018-1038
- ALAS2-2018-1039
- ALAS2-2018-1049
- ALPINE:CVE-2018-3639
- CISCO-SA-20180521-CPUSIDECHANNEL
- DSA-4210-1
- DSA-4273-1
- DSA-4273-2
- ELSA-2018-1629
- ELSA-2018-1632
- ELSA-2018-1633
- ELSA-2018-1647
- ELSA-2018-1648
- ELSA-2018-1649
- ELSA-2018-1650
- ELSA-2018-1651
- ELSA-2018-1660
- ELSA-2018-1669
- ELSA-2018-1854
- ELSA-2018-1965
- ELSA-2018-1997
- ELSA-2018-2001
- ELSA-2018-2162
- ELSA-2018-2164
- ELSA-2018-4114
- ELSA-2018-4126
- ELSA-2018-4198
- ELSA-2018-4235
- ELSA-2018-4285
- ELSA-2018-4289
- ELSA-2019-4531
- ELSA-2019-4585
- FEDORA-2018-0edb45d9db
- FEDORA-2018-1621b2204a
- FEDORA-2018-1a467757ce
- FEDORA-2018-1c80fea1cd
- FEDORA-2018-2a0f8b2c9d
- FEDORA-2018-2b053454a4
- FEDORA-2018-2c6bd93875
- FEDORA-2018-2ee3411cb8
- FEDORA-2018-2f6df9abfb
- FEDORA-2018-3857a8b41a
- FEDORA-2018-44f8a7454d
- FEDORA-2018-49bda79bd5
- FEDORA-2018-50075276e8
- FEDORA-2018-527698a904
- FEDORA-2018-537c8312fc
- FEDORA-2018-5521156807
- FEDORA-2018-59e4747e0f
- FEDORA-2018-6367a17aa3
- FEDORA-2018-683dfde81a
- FEDORA-2018-6c1be5e1c8
- FEDORA-2018-6e8c330d50
- FEDORA-2018-73dd8de892
- FEDORA-2018-74fb8b257b
- FEDORA-2018-79d7c3d2df
- FEDORA-2018-8422d94975
- FEDORA-2018-8484550fff
- FEDORA-2018-915602df63
- FEDORA-2018-93af520878
- FEDORA-2018-93c2e74446
- FEDORA-2018-94315e9a6b
- FEDORA-2018-9d0e4e40b5
- FEDORA-2018-9f02e5ed7b
- FEDORA-2018-9f4381d8c4
- FEDORA-2018-a0914af224
- FEDORA-2018-a7862a75f5
- FEDORA-2018-aec846c0ef
- FEDORA-2018-b57db4753c
- FEDORA-2018-b68776e5b0
- FEDORA-2018-b997780dca
- FEDORA-2018-bb7aab12cb
- FEDORA-2018-c0a1284064
- FEDORA-2018-c449dc1c9c
- FEDORA-2018-ca0e10fc6e
- FEDORA-2018-cc812838fb
- FEDORA-2018-d3cb6f113c
- FEDORA-2018-d77cc41f35
- FEDORA-2018-d82a45d9ab
- FEDORA-2018-d92fde52d7
- FEDORA-2018-db0d3e157e
- FEDORA-2018-ddbaca855e
- FEDORA-2018-e820fccd83
- FEDORA-2018-e8f793bbfc
- FEDORA-2018-f1b818a5c9
- FEDORA-2018-f20a0cead5
- FEDORA-2018-f8cba144ae
- FEDORA-2018-fe24359b69
- FEDORA-2019-16de0047d4
- FEDORA-2019-196ab64d65
- FEDORA-2019-1b986880ea
- FEDORA-2019-20a89ca9af
- FEDORA-2019-337484d88b
- FEDORA-2019-3854a1727e
- FEDORA-2019-3da64f3e61
- FEDORA-2019-3f9a71578d
- FEDORA-2019-4002b91800
- FEDORA-2019-509c133845
- FEDORA-2019-65c6d11eba
- FEDORA-2019-6e146a714c
- FEDORA-2019-7d3500d712
- FEDORA-2019-8f2b27efce
- FEDORA-2019-a6cd583a8d
- FEDORA-2019-a87aba290f
- FEDORA-2019-bce6498890
- FEDORA-2019-c36afa818c
- FEDORA-2019-c701e6605a
- FEDORA-2019-ce2933b003
- FEDORA-2019-ec644ec323
- openSUSE-SU-2019:1438-1
- openSUSE-SU-2020:1325-1
- RHSA-2018:1629
- RHSA-2018:1630
- RHSA-2018:1632
- RHSA-2018:1633
- RHSA-2018:1647
- RHSA-2018:1648
- RHSA-2018:1649
- RHSA-2018:1650
- RHSA-2018:1651
- RHSA-2018:1660
- RHSA-2018:1669
- RHSA-2018:1854
- RHSA-2018:1965
- RHSA-2018:1997
- RHSA-2018:2001
- RHSA-2018:2003
- RHSA-2018:2162
- RHSA-2018:2164
- SSA:2018-208-01
- SUSE-SU-2018:1362-1
- SUSE-SU-2018:1362-2
- SUSE-SU-2018:1363-1
- SUSE-SU-2018:1366-1
- SUSE-SU-2018:1368-1
- SUSE-SU-2018:1374-1
- SUSE-SU-2018:1375-1
- SUSE-SU-2018:1376-1
- SUSE-SU-2018:1377-1
- SUSE-SU-2018:1377-2
- SUSE-SU-2018:1378-1
- SUSE-SU-2018:1386-1
- SUSE-SU-2018:1389-1
- SUSE-SU-2018:1452-1
- SUSE-SU-2018:1456-1
- SUSE-SU-2018:1475-1
- SUSE-SU-2018:1479-1
- SUSE-SU-2018:1582-1
- SUSE-SU-2018:1603-1
- SUSE-SU-2018:1614-1
- SUSE-SU-2018:1614-2
- SUSE-SU-2018:1658-1
- SUSE-SU-2018:1699-1
- SUSE-SU-2018:1699-2
- SUSE-SU-2018:1816-1
- SUSE-SU-2018:1846-1
- SUSE-SU-2018:1926-1
- SUSE-SU-2018:1935-1
- SUSE-SU-2018:1935-2
- SUSE-SU-2018:2076-1
- SUSE-SU-2018:2082-1
- SUSE-SU-2018:2092-1
- SUSE-SU-2018:2141-1
- SUSE-SU-2018:2304-1
- SUSE-SU-2018:2331-1
- SUSE-SU-2018:2331-2
- SUSE-SU-2018:2335-1
- SUSE-SU-2018:2338-1
- SUSE-SU-2018:2340-1
- SUSE-SU-2018:2528-1
- SUSE-SU-2018:2556-1
- SUSE-SU-2018:2565-1
- SUSE-SU-2018:2615-1
- SUSE-SU-2018:2650-1
- SUSE-SU-2018:2973-1
- SUSE-SU-2018:2973-2
- SUSE-SU-2018:3064-1
- SUSE-SU-2018:3064-2
- SUSE-SU-2018:3064-3
- SUSE-SU-2018:3555-1
- SUSE-SU-2019:0049-1
- SUSE-SU-2019:0049-2
- SUSE-SU-2019:0148-1
- SUSE-SU-2019:1211-1
- SUSE-SU-2019:1211-2
- SUSE-SU-2019:1219-1
- SUSE-SU-2019:2028-1
- SUSE-SU-2020:2540-1
- SUSE-SU-2020:2605-1
- SUSE-SU-2021:3007-1
- SUSE-SU-2021:3969-1
- SUSE-SU-2023:3324-1
- SUSE-SU-2023:3333-1
- SUSE-SU-2023:3349-1
- USN-3651-1
- USN-3652-1
- USN-3653-1
- USN-3653-2
- USN-3654-1
- USN-3654-2
- USN-3655-1
- USN-3655-2
- USN-3680-1
- USN-3756-1
- USN-3777-3
- VU:180049
- XSA-263
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/qemu?distro=xenial | ubuntu | qemu | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu?distro=trusty | ubuntu | qemu | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu?distro=bionic | ubuntu | qemu | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-utils?distro=xenial | ubuntu | qemu-utils | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-utils?distro=trusty | ubuntu | qemu-utils | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-utils?distro=bionic | ubuntu | qemu-utils | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-user?distro=xenial | ubuntu | qemu-user | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-user?distro=trusty | ubuntu | qemu-user | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-user?distro=bionic | ubuntu | qemu-user | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-user-static?distro=xenial | ubuntu | qemu-user-static | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-user-static?distro=trusty | ubuntu | qemu-user-static | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-user-static?distro=bionic | ubuntu | qemu-user-static | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-user-binfmt?distro=xenial | ubuntu | qemu-user-binfmt | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-user-binfmt?distro=bionic | ubuntu | qemu-user-binfmt | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system?distro=xenial | ubuntu | qemu-system | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system?distro=trusty | ubuntu | qemu-system | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-system?distro=bionic | ubuntu | qemu-system | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system-x86?distro=xenial | ubuntu | qemu-system-x86 | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system-x86?distro=trusty | ubuntu | qemu-system-x86 | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-system-x86?distro=bionic | ubuntu | qemu-system-x86 | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system-sparc?distro=xenial | ubuntu | qemu-system-sparc | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system-sparc?distro=trusty | ubuntu | qemu-system-sparc | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-system-sparc?distro=bionic | ubuntu | qemu-system-sparc | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system-s390x?distro=xenial | ubuntu | qemu-system-s390x | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system-s390x?distro=bionic | ubuntu | qemu-system-s390x | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system-ppc?distro=xenial | ubuntu | qemu-system-ppc | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system-ppc?distro=trusty | ubuntu | qemu-system-ppc | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-system-ppc?distro=bionic | ubuntu | qemu-system-ppc | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system-misc?distro=xenial | ubuntu | qemu-system-misc | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system-misc?distro=trusty | ubuntu | qemu-system-misc | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-system-misc?distro=bionic | ubuntu | qemu-system-misc | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system-mips?distro=xenial | ubuntu | qemu-system-mips | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system-mips?distro=trusty | ubuntu | qemu-system-mips | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-system-mips?distro=bionic | ubuntu | qemu-system-mips | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system-common?distro=xenial | ubuntu | qemu-system-common | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system-common?distro=trusty | ubuntu | qemu-system-common | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-system-common?distro=bionic | ubuntu | qemu-system-common | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system-arm?distro=xenial | ubuntu | qemu-system-arm | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system-arm?distro=trusty | ubuntu | qemu-system-arm | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-system-arm?distro=bionic | ubuntu | qemu-system-arm | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-system-aarch64?distro=xenial | ubuntu | qemu-system-aarch64 | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-system-aarch64?distro=trusty | ubuntu | qemu-system-aarch64 | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-kvm?distro=xenial | ubuntu | qemu-kvm | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-kvm?distro=trusty | ubuntu | qemu-kvm | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-kvm?distro=bionic | ubuntu | qemu-kvm | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-keymaps?distro=trusty | ubuntu | qemu-keymaps | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-guest-agent?distro=xenial | ubuntu | qemu-guest-agent | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-guest-agent?distro=trusty | ubuntu | qemu-guest-agent | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-guest-agent?distro=bionic | ubuntu | qemu-guest-agent | < 2.11+dfsg-1ubuntu7.3 | bionic | ||
Affected | pkg:deb/ubuntu/qemu-common?distro=trusty | ubuntu | qemu-common | < 2.0.0+dfsg-2ubuntu1.43 | trusty | ||
Affected | pkg:deb/ubuntu/qemu-block-extra?distro=xenial | ubuntu | qemu-block-extra | < 2.5+dfsg-5ubuntu10.30 | xenial | ||
Affected | pkg:deb/ubuntu/qemu-block-extra?distro=bionic | ubuntu | qemu-block-extra | < 2.11+dfsg-1ubuntu7.3 | bionic |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |