- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3099-1                [email protected]
https://www.debian.org/lts/security/                          Abhijith PA
September 05, 2022                            https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : qemu
Version        : 1:3.1+dfsg-8+deb10u9
CVE ID         : CVE-2020-13253 CVE-2020-15469 CVE-2020-15859 CVE-2020-25084 
                 CVE-2020-25085 CVE-2020-25624 CVE-2020-25625 CVE-2020-25723 
                 CVE-2020-27617 CVE-2020-27821 CVE-2020-28916 CVE-2020-29129 
                 CVE-2020-29443 CVE-2020-35504 CVE-2020-35505 CVE-2021-3392 
                 CVE-2021-3416 CVE-2021-3507 CVE-2021-3527 CVE-2021-3582 
                 CVE-2021-3607 CVE-2021-3608 CVE-2021-3682 CVE-2021-3713 
                 CVE-2021-3748 CVE-2021-3930 CVE-2021-4206 CVE-2021-4207 
                 CVE-2021-20181 CVE-2021-20196 CVE-2021-20203 CVE-2021-20221 
                 CVE-2021-20257 CVE-2022-26354 CVE-2022-35414

Multiple security issues were discovered in QEMU, a fast processor
emulator, which could result in denial of service or the the execution
of arbitrary code. 

For Debian 10 buster, these problems have been fixed in version
1:3.1+dfsg-8+deb10u9.

We recommend that you upgrade your qemu packages.

For the detailed security status of qemu please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/qemu

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS