CVE-2022-0358

Upstream information

CVE-2022-0358 at MITRE

Description

A flaw was found in the QEMU virtio-fs shared file system daemon (virtiofsd) implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of the group. This could allow a malicious unprivileged user inside the guest to gain access to resources accessible to the root group, potentially escalating their privileges within the guest. A malicious local user in the host might also leverage this unexpected executable file created by the guest to escalate their privileges on the host system.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having moderate severity.

CVSS v3 Scores
	National Vulnerability Database	SUSE
Base Score	7.8	7
Vector	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Access Vector	Local	Local
Access Complexity	Low	High
Privileges Required	Low	Low
User Interaction	None	None
Scope	Unchanged	Unchanged
Confidentiality Impact	High	High
Integrity Impact	High	High
Availability Impact	High	High
CVSSv3 Version	3.1	3.1

SUSE Bugzilla entry: 1195161 [NEW]

SUSE Security Advisories:

SUSE-SU-2022:0930-1, published Tue Mar 22 14:20:26 UTC 2022
SUSE-SU-2022:0930-2, published Wed Apr 20 16:23:16 UTC 2022
openSUSE-SU-2022:0930-1, published Tue Mar 22 16:42:19 2022

List of released packages

Product(s)	Fixed package version(s)	References
Container suse/sle-micro-rancher/5.2:latest	`qemu-guest-agent >= 5.2.0-150300.112.4`
Image SLES15-SP3-EC2-ECS-HVM	`qemu-tools >= 5.2.0-150300.112.4`
SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP3	`qemu-tools >= 5.2.0-150300.112.4`	Patchnames: SUSE-SLE-Module-Basesystem-15-SP3-2022-930
SUSE Linux Enterprise Desktop 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP4	`qemu-tools >= 6.2.0-150400.35.10`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP4 GA qemu-tools-6.2.0-150400.35.10
SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2	`qemu >= 5.2.0-150300.112.4` `qemu-SLOF >= 5.2.0-150300.112.4` `qemu-arm >= 5.2.0-150300.112.4` `qemu-audio-alsa >= 5.2.0-150300.112.4` `qemu-audio-pa >= 5.2.0-150300.112.4` `qemu-audio-spice >= 5.2.0-150300.112.4` `qemu-block-curl >= 5.2.0-150300.112.4` `qemu-block-iscsi >= 5.2.0-150300.112.4` `qemu-block-rbd >= 5.2.0-150300.112.4` `qemu-block-ssh >= 5.2.0-150300.112.4` `qemu-chardev-baum >= 5.2.0-150300.112.4` `qemu-chardev-spice >= 5.2.0-150300.112.4` `qemu-guest-agent >= 5.2.0-150300.112.4` `qemu-hw-display-qxl >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-gpu >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-gpu-pci >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-vga >= 5.2.0-150300.112.4` `qemu-hw-s390x-virtio-gpu-ccw >= 5.2.0-150300.112.4` `qemu-hw-usb-redirect >= 5.2.0-150300.112.4` `qemu-ipxe >= 1.0.0+-150300.112.4` `qemu-ksm >= 5.2.0-150300.112.4` `qemu-kvm >= 5.2.0-150300.112.4` `qemu-lang >= 5.2.0-150300.112.4` `qemu-ppc >= 5.2.0-150300.112.4` `qemu-s390x >= 5.2.0-150300.112.4` `qemu-seabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-sgabios >= 8-150300.112.4` `qemu-skiboot >= 5.2.0-150300.112.4` `qemu-tools >= 5.2.0-150300.112.4` `qemu-ui-curses >= 5.2.0-150300.112.4` `qemu-ui-gtk >= 5.2.0-150300.112.4` `qemu-ui-opengl >= 5.2.0-150300.112.4` `qemu-ui-spice-app >= 5.2.0-150300.112.4` `qemu-ui-spice-core >= 5.2.0-150300.112.4` `qemu-vgabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-x86 >= 5.2.0-150300.112.4`	Patchnames: SUSE-SLE-Module-Basesystem-15-SP3-2022-930 SUSE-SLE-Module-Server-Applications-15-SP3-2022-930
SUSE Linux Enterprise High Performance Computing 15 SP4 SUSE Linux Enterprise Server 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3	`qemu >= 6.2.0-150400.35.10` `qemu-SLOF >= 6.2.0-150400.35.10` `qemu-accel-tcg-x86 >= 6.2.0-150400.35.10` `qemu-arm >= 6.2.0-150400.35.10` `qemu-audio-alsa >= 6.2.0-150400.35.10` `qemu-audio-pa >= 6.2.0-150400.35.10` `qemu-audio-spice >= 6.2.0-150400.35.10` `qemu-block-curl >= 6.2.0-150400.35.10` `qemu-block-iscsi >= 6.2.0-150400.35.10` `qemu-block-rbd >= 6.2.0-150400.35.10` `qemu-block-ssh >= 6.2.0-150400.35.10` `qemu-chardev-baum >= 6.2.0-150400.35.10` `qemu-chardev-spice >= 6.2.0-150400.35.10` `qemu-guest-agent >= 6.2.0-150400.35.10` `qemu-hw-display-qxl >= 6.2.0-150400.35.10` `qemu-hw-display-virtio-gpu >= 6.2.0-150400.35.10` `qemu-hw-display-virtio-gpu-pci >= 6.2.0-150400.35.10` `qemu-hw-display-virtio-vga >= 6.2.0-150400.35.10` `qemu-hw-s390x-virtio-gpu-ccw >= 6.2.0-150400.35.10` `qemu-hw-usb-host >= 6.2.0-150400.35.10` `qemu-hw-usb-redirect >= 6.2.0-150400.35.10` `qemu-ipxe >= 1.0.0+-150400.35.10` `qemu-ksm >= 6.2.0-150400.35.10` `qemu-kvm >= 6.2.0-150400.35.10` `qemu-lang >= 6.2.0-150400.35.10` `qemu-ppc >= 6.2.0-150400.35.10` `qemu-s390x >= 6.2.0-150400.35.10` `qemu-seabios >= 1.15.0_0_g2dd4b9b-150400.35.10` `qemu-sgabios >= 8-150400.35.10` `qemu-skiboot >= 6.2.0-150400.35.10` `qemu-tools >= 6.2.0-150400.35.10` `qemu-ui-curses >= 6.2.0-150400.35.10` `qemu-ui-gtk >= 6.2.0-150400.35.10` `qemu-ui-opengl >= 6.2.0-150400.35.10` `qemu-ui-spice-app >= 6.2.0-150400.35.10` `qemu-ui-spice-core >= 6.2.0-150400.35.10` `qemu-vgabios >= 1.15.0_0_g2dd4b9b-150400.35.10` `qemu-x86 >= 6.2.0-150400.35.10`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP4 GA qemu-tools-6.2.0-150400.35.10 SUSE Linux Enterprise Module for Server Applications 15 SP4 GA qemu-6.2.0-150400.35.10
SUSE Linux Enterprise Micro 5.1	`qemu >= 5.2.0-150300.112.4` `qemu-arm >= 5.2.0-150300.112.4` `qemu-ipxe >= 1.0.0+-150300.112.4` `qemu-s390x >= 5.2.0-150300.112.4` `qemu-seabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-sgabios >= 8-150300.112.4` `qemu-tools >= 5.2.0-150300.112.4` `qemu-vgabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-x86 >= 5.2.0-150300.112.4`	Patchnames: SUSE-SUSE-MicroOS-5.1-2022-930
SUSE Linux Enterprise Micro 5.2	`qemu >= 5.2.0-150300.112.4` `qemu-arm >= 5.2.0-150300.112.4` `qemu-audio-spice >= 5.2.0-150300.112.4` `qemu-chardev-spice >= 5.2.0-150300.112.4` `qemu-guest-agent >= 5.2.0-150300.112.4` `qemu-hw-display-qxl >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-gpu >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-vga >= 5.2.0-150300.112.4` `qemu-hw-usb-redirect >= 5.2.0-150300.112.4` `qemu-ipxe >= 1.0.0+-150300.112.4` `qemu-s390x >= 5.2.0-150300.112.4` `qemu-seabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-sgabios >= 8-150300.112.4` `qemu-tools >= 5.2.0-150300.112.4` `qemu-ui-opengl >= 5.2.0-150300.112.4` `qemu-ui-spice-core >= 5.2.0-150300.112.4` `qemu-vgabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-x86 >= 5.2.0-150300.112.4`	Patchnames: SUSE-SUSE-MicroOS-5.2-2022-930
SUSE Linux Enterprise Module for Server Applications 15 SP3	`qemu >= 5.2.0-150300.112.4` `qemu-SLOF >= 5.2.0-150300.112.4` `qemu-arm >= 5.2.0-150300.112.4` `qemu-audio-alsa >= 5.2.0-150300.112.4` `qemu-audio-pa >= 5.2.0-150300.112.4` `qemu-audio-spice >= 5.2.0-150300.112.4` `qemu-block-curl >= 5.2.0-150300.112.4` `qemu-block-iscsi >= 5.2.0-150300.112.4` `qemu-block-rbd >= 5.2.0-150300.112.4` `qemu-block-ssh >= 5.2.0-150300.112.4` `qemu-chardev-baum >= 5.2.0-150300.112.4` `qemu-chardev-spice >= 5.2.0-150300.112.4` `qemu-guest-agent >= 5.2.0-150300.112.4` `qemu-hw-display-qxl >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-gpu >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-gpu-pci >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-vga >= 5.2.0-150300.112.4` `qemu-hw-s390x-virtio-gpu-ccw >= 5.2.0-150300.112.4` `qemu-hw-usb-redirect >= 5.2.0-150300.112.4` `qemu-ipxe >= 1.0.0+-150300.112.4` `qemu-ksm >= 5.2.0-150300.112.4` `qemu-kvm >= 5.2.0-150300.112.4` `qemu-lang >= 5.2.0-150300.112.4` `qemu-ppc >= 5.2.0-150300.112.4` `qemu-s390x >= 5.2.0-150300.112.4` `qemu-seabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-sgabios >= 8-150300.112.4` `qemu-skiboot >= 5.2.0-150300.112.4` `qemu-ui-curses >= 5.2.0-150300.112.4` `qemu-ui-gtk >= 5.2.0-150300.112.4` `qemu-ui-opengl >= 5.2.0-150300.112.4` `qemu-ui-spice-app >= 5.2.0-150300.112.4` `qemu-ui-spice-core >= 5.2.0-150300.112.4` `qemu-vgabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-x86 >= 5.2.0-150300.112.4`	Patchnames: SUSE-SLE-Module-Server-Applications-15-SP3-2022-930
SUSE Linux Enterprise Module for Server Applications 15 SP4	`qemu >= 6.2.0-150400.35.10` `qemu-SLOF >= 6.2.0-150400.35.10` `qemu-accel-tcg-x86 >= 6.2.0-150400.35.10` `qemu-arm >= 6.2.0-150400.35.10` `qemu-audio-alsa >= 6.2.0-150400.35.10` `qemu-audio-pa >= 6.2.0-150400.35.10` `qemu-audio-spice >= 6.2.0-150400.35.10` `qemu-block-curl >= 6.2.0-150400.35.10` `qemu-block-iscsi >= 6.2.0-150400.35.10` `qemu-block-rbd >= 6.2.0-150400.35.10` `qemu-block-ssh >= 6.2.0-150400.35.10` `qemu-chardev-baum >= 6.2.0-150400.35.10` `qemu-chardev-spice >= 6.2.0-150400.35.10` `qemu-guest-agent >= 6.2.0-150400.35.10` `qemu-hw-display-qxl >= 6.2.0-150400.35.10` `qemu-hw-display-virtio-gpu >= 6.2.0-150400.35.10` `qemu-hw-display-virtio-gpu-pci >= 6.2.0-150400.35.10` `qemu-hw-display-virtio-vga >= 6.2.0-150400.35.10` `qemu-hw-s390x-virtio-gpu-ccw >= 6.2.0-150400.35.10` `qemu-hw-usb-host >= 6.2.0-150400.35.10` `qemu-hw-usb-redirect >= 6.2.0-150400.35.10` `qemu-ipxe >= 1.0.0+-150400.35.10` `qemu-ksm >= 6.2.0-150400.35.10` `qemu-kvm >= 6.2.0-150400.35.10` `qemu-lang >= 6.2.0-150400.35.10` `qemu-ppc >= 6.2.0-150400.35.10` `qemu-s390x >= 6.2.0-150400.35.10` `qemu-seabios >= 1.15.0_0_g2dd4b9b-150400.35.10` `qemu-sgabios >= 8-150400.35.10` `qemu-skiboot >= 6.2.0-150400.35.10` `qemu-ui-curses >= 6.2.0-150400.35.10` `qemu-ui-gtk >= 6.2.0-150400.35.10` `qemu-ui-opengl >= 6.2.0-150400.35.10` `qemu-ui-spice-app >= 6.2.0-150400.35.10` `qemu-ui-spice-core >= 6.2.0-150400.35.10` `qemu-vgabios >= 1.15.0_0_g2dd4b9b-150400.35.10` `qemu-x86 >= 6.2.0-150400.35.10`	Patchnames: SUSE Linux Enterprise Module for Server Applications 15 SP4 GA qemu-6.2.0-150400.35.10
openSUSE Leap 15.3	`qemu >= 5.2.0-150300.112.4` `qemu-SLOF >= 5.2.0-150300.112.4` `qemu-arm >= 5.2.0-150300.112.4` `qemu-audio-alsa >= 5.2.0-150300.112.4` `qemu-audio-pa >= 5.2.0-150300.112.4` `qemu-audio-spice >= 5.2.0-150300.112.4` `qemu-block-curl >= 5.2.0-150300.112.4` `qemu-block-dmg >= 5.2.0-150300.112.4` `qemu-block-gluster >= 5.2.0-150300.112.4` `qemu-block-iscsi >= 5.2.0-150300.112.4` `qemu-block-nfs >= 5.2.0-150300.112.4` `qemu-block-rbd >= 5.2.0-150300.112.4` `qemu-block-ssh >= 5.2.0-150300.112.4` `qemu-chardev-baum >= 5.2.0-150300.112.4` `qemu-chardev-spice >= 5.2.0-150300.112.4` `qemu-extra >= 5.2.0-150300.112.4` `qemu-guest-agent >= 5.2.0-150300.112.4` `qemu-hw-display-qxl >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-gpu >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-gpu-pci >= 5.2.0-150300.112.4` `qemu-hw-display-virtio-vga >= 5.2.0-150300.112.4` `qemu-hw-s390x-virtio-gpu-ccw >= 5.2.0-150300.112.4` `qemu-hw-usb-redirect >= 5.2.0-150300.112.4` `qemu-hw-usb-smartcard >= 5.2.0-150300.112.4` `qemu-ipxe >= 1.0.0+-150300.112.4` `qemu-ivshmem-tools >= 5.2.0-150300.112.4` `qemu-ksm >= 5.2.0-150300.112.4` `qemu-kvm >= 5.2.0-150300.112.4` `qemu-lang >= 5.2.0-150300.112.4` `qemu-linux-user >= 5.2.0-150300.112.3` `qemu-microvm >= 5.2.0-150300.112.4` `qemu-ppc >= 5.2.0-150300.112.4` `qemu-s390x >= 5.2.0-150300.112.4` `qemu-seabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-sgabios >= 8-150300.112.4` `qemu-skiboot >= 5.2.0-150300.112.4` `qemu-testsuite >= 5.2.0-150300.112.7` `qemu-tools >= 5.2.0-150300.112.4` `qemu-ui-curses >= 5.2.0-150300.112.4` `qemu-ui-gtk >= 5.2.0-150300.112.4` `qemu-ui-opengl >= 5.2.0-150300.112.4` `qemu-ui-spice-app >= 5.2.0-150300.112.4` `qemu-ui-spice-core >= 5.2.0-150300.112.4` `qemu-vgabios >= 1.14.0_0_g155821a-150300.112.4` `qemu-vhost-user-gpu >= 5.2.0-150300.112.4` `qemu-x86 >= 5.2.0-150300.112.4`	Patchnames: openSUSE-SLE-15.3-2022-930
openSUSE Leap 15.4	`qemu >= 6.2.0-150400.35.10` `qemu-SLOF >= 6.2.0-150400.35.10` `qemu-accel-tcg-x86 >= 6.2.0-150400.35.10` `qemu-arm >= 6.2.0-150400.35.10` `qemu-audio-spice >= 6.2.0-150400.35.10` `qemu-block-curl >= 6.2.0-150400.35.10` `qemu-block-rbd >= 6.2.0-150400.35.10` `qemu-chardev-spice >= 6.2.0-150400.35.10` `qemu-guest-agent >= 6.2.0-150400.35.10` `qemu-hw-display-qxl >= 6.2.0-150400.35.10` `qemu-hw-display-virtio-gpu >= 6.2.0-150400.35.10` `qemu-hw-display-virtio-gpu-pci >= 6.2.0-150400.35.10` `qemu-hw-display-virtio-vga >= 6.2.0-150400.35.10` `qemu-hw-usb-host >= 6.2.0-150400.35.10` `qemu-hw-usb-redirect >= 6.2.0-150400.35.10` `qemu-hw-usb-smartcard >= 6.2.0-150400.35.10` `qemu-ipxe >= 1.0.0+-150400.35.10` `qemu-ksm >= 6.2.0-150400.35.10` `qemu-microvm >= 6.2.0-150400.35.10` `qemu-ppc >= 6.2.0-150400.35.10` `qemu-seabios >= 1.15.0_0_g2dd4b9b-150400.35.10` `qemu-sgabios >= 8-150400.35.10` `qemu-tools >= 6.2.0-150400.35.10` `qemu-ui-curses >= 6.2.0-150400.35.10` `qemu-ui-gtk >= 6.2.0-150400.35.10` `qemu-ui-opengl >= 6.2.0-150400.35.10` `qemu-ui-spice-app >= 6.2.0-150400.35.10` `qemu-ui-spice-core >= 6.2.0-150400.35.10` `qemu-vgabios >= 1.15.0_0_g2dd4b9b-150400.35.10` `qemu-x86 >= 6.2.0-150400.35.10`	Patchnames: openSUSE Leap 15.4 GA qemu-6.2.0-150400.35.10
openSUSE Tumbleweed	`qemu >= 6.2.0-41.1` `qemu-SLOF >= 6.2.0-41.1` `qemu-accel-qtest >= 6.2.0-41.1` `qemu-accel-tcg-x86 >= 6.2.0-41.1` `qemu-arm >= 6.2.0-41.1` `qemu-audio-alsa >= 6.2.0-41.1` `qemu-audio-jack >= 6.2.0-41.1` `qemu-audio-oss >= 6.2.0-41.1` `qemu-audio-pa >= 6.2.0-41.1` `qemu-audio-spice >= 6.2.0-41.1` `qemu-block-curl >= 6.2.0-41.1` `qemu-block-dmg >= 6.2.0-41.1` `qemu-block-gluster >= 6.2.0-41.1` `qemu-block-iscsi >= 6.2.0-41.1` `qemu-block-nfs >= 6.2.0-41.1` `qemu-block-rbd >= 6.2.0-41.1` `qemu-block-ssh >= 6.2.0-41.1` `qemu-chardev-baum >= 6.2.0-41.1` `qemu-chardev-spice >= 6.2.0-41.1` `qemu-extra >= 6.2.0-41.1` `qemu-guest-agent >= 6.2.0-41.1` `qemu-hw-display-qxl >= 6.2.0-41.1` `qemu-hw-display-virtio-gpu >= 6.2.0-41.1` `qemu-hw-display-virtio-gpu-pci >= 6.2.0-41.1` `qemu-hw-display-virtio-vga >= 6.2.0-41.1` `qemu-hw-s390x-virtio-gpu-ccw >= 6.2.0-41.1` `qemu-hw-usb-host >= 6.2.0-41.1` `qemu-hw-usb-redirect >= 6.2.0-41.1` `qemu-hw-usb-smartcard >= 6.2.0-41.1` `qemu-ipxe >= 1.0.0+-41.1` `qemu-ivshmem-tools >= 6.2.0-41.1` `qemu-ksm >= 6.2.0-41.1` `qemu-kvm >= 6.2.0-41.1` `qemu-lang >= 6.2.0-41.1` `qemu-microvm >= 6.2.0-41.1` `qemu-ppc >= 6.2.0-41.1` `qemu-s390x >= 6.2.0-41.1` `qemu-seabios >= 1.15.0_0_g2dd4b9b-41.1` `qemu-sgabios >= 8-41.1` `qemu-skiboot >= 6.2.0-41.1` `qemu-tools >= 6.2.0-41.1` `qemu-ui-curses >= 6.2.0-41.1` `qemu-ui-gtk >= 6.2.0-41.1` `qemu-ui-opengl >= 6.2.0-41.1` `qemu-ui-spice-app >= 6.2.0-41.1` `qemu-ui-spice-core >= 6.2.0-41.1` `qemu-vgabios >= 1.15.0_0_g2dd4b9b-41.1` `qemu-vhost-user-gpu >= 6.2.0-41.1` `qemu-x86 >= 6.2.0-41.1`	Patchnames: openSUSE Tumbleweed GA qemu-6.2.0-41.1

First public cloud image revisions this CVE is fixed in:

amazon/suse-sles-15-sp3-v20220419-ecs-hvm-ssd-x86_64

Status of this issue by product and package

Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification.

Product(s)	Source package	State
HPE Helion OpenStack 8	qemu	Not affected
SUSE CaaS Platform 4.0	qemu	Not affected
SUSE Enterprise Storage 6	qemu	Not affected
SUSE Enterprise Storage 7	qemu	Not affected
SUSE Linux Enterprise Desktop 15 SP3	qemu	Released
SUSE Linux Enterprise Desktop 15 SP4	qemu	Already fixed
SUSE Linux Enterprise High Performance Computing 12 SP5	qemu	Not affected
SUSE Linux Enterprise High Performance Computing 15 LTSS	qemu	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP1 ESPOS	qemu	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS	qemu	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP2 ESPOS	qemu	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS	qemu	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP3	qemu	Released
SUSE Linux Enterprise High Performance Computing 15 SP4	qemu	Already fixed
SUSE Linux Enterprise Micro 5.0	qemu	Not affected
SUSE Linux Enterprise Micro 5.1	qemu	Released
SUSE Linux Enterprise Micro 5.2	qemu	Released
SUSE Linux Enterprise Micro for Rancher 5.2	qemu	Released
SUSE Linux Enterprise Module for Basesystem 15 SP3	qemu	Released
SUSE Linux Enterprise Module for Basesystem 15 SP4	qemu	Already fixed
SUSE Linux Enterprise Module for Server Applications 15 SP3	qemu	Released
SUSE Linux Enterprise Module for Server Applications 15 SP4	qemu	Already fixed
SUSE Linux Enterprise Real Time 15 SP2	qemu	Not affected
SUSE Linux Enterprise Server 11 SP1	kvm	Not affected
SUSE Linux Enterprise Server 11 SP3	kvm	Not affected
SUSE Linux Enterprise Server 12 SP2 BCL	qemu	Not affected
SUSE Linux Enterprise Server 12 SP3 BCL	qemu	Not affected
SUSE Linux Enterprise Server 12 SP3 ESPOS	qemu	Not affected
SUSE Linux Enterprise Server 12 SP3 LTSS	qemu	Not affected
SUSE Linux Enterprise Server 12 SP4 ESPOS	qemu	Not affected
SUSE Linux Enterprise Server 12 SP4 LTSS	qemu	Not affected
SUSE Linux Enterprise Server 12 SP5	qemu	Not affected
SUSE Linux Enterprise Server 15 ESPOS	qemu	Not affected
SUSE Linux Enterprise Server 15 LTSS	qemu	Not affected
SUSE Linux Enterprise Server 15 SP1 LTSS	qemu	Not affected
SUSE Linux Enterprise Server 15 SP2 LTSS	qemu	Not affected
SUSE Linux Enterprise Server 15 SP3	qemu	Released
SUSE Linux Enterprise Server 15 SP4	qemu	Already fixed
SUSE Linux Enterprise Server Business Critical Linux 15 SP1	qemu	Not affected
SUSE Linux Enterprise Server Business Critical Linux 15 SP2	qemu	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP3	qemu	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP4	qemu	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP5	qemu	Not affected
SUSE Linux Enterprise Server for SAP Applications 15	qemu	Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP1	qemu	Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP2	qemu	Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP3	qemu	Released
SUSE Linux Enterprise Server for SAP Applications 15 SP4	qemu	Already fixed
SUSE Linux Enterprise Storage 7.1	qemu	Released
SUSE Manager Proxy 4.1	qemu	Not affected
SUSE Manager Proxy 4.2	qemu	Released
SUSE Manager Proxy 4.3	qemu	Already fixed
SUSE Manager Retail Branch Server 4.1	qemu	Not affected
SUSE Manager Retail Branch Server 4.2	qemu	Released
SUSE Manager Retail Branch Server 4.3	qemu	Already fixed
SUSE Manager Server 4.1	qemu	Not affected
SUSE Manager Server 4.2	qemu	Released
SUSE Manager Server 4.3	qemu	Already fixed
SUSE OpenStack Cloud 8	qemu	Not affected
SUSE OpenStack Cloud 9	qemu	Not affected
SUSE OpenStack Cloud Crowbar 8	qemu	Not affected
SUSE OpenStack Cloud Crowbar 9	qemu	Not affected
suse/sles/15.4/libguestfs-tools:0.49.0 suse/sles/15.4/virt-launcher:0.49.0	qemu	Already fixed
suse/sles/15.2/virt-launcher:0.38.1	qemu	Not affected
suse/sles/15.3/libguestfs-tools:0.45.0 suse/sles/15.3/virt-launcher:0.45.0	qemu	In progress

CVE-2022-0358

Common Vulnerabilities and Exposures

Upstream information

Description

SUSE information

SUSE Security Advisories:

List of released packages

First public cloud image revisions this CVE is fixed in:

Status of this issue by product and package

Business-Critical Linux

Enterprise Container Management

Edge

Solutions

Industries

Support

Services

Resources

Partners

Communities

About