{
   document: {
      aggregate_severity: {
         namespace: "https://www.suse.com/support/security/rating/",
         text: "important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright 2024 SUSE LLC. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Security update for xen",
            title: "Title of the patch",
         },
         {
            category: "description",
            text: "This update for xen fixes several issues:\n\nThese security issues were fixed:\n\n- CVE-2017-5526: The ES1370 audio device emulation support was vulnerable to a\n  memory leakage issue allowing a privileged user inside the guest to cause a DoS\n  and/or potentially crash the Qemu process on the host (bsc#1059777)\n- CVE-2017-15593: Missing cleanup in the page type system allowed a malicious or\n  buggy PV guest to cause DoS (XSA-242 bsc#1061084)\n- CVE-2017-15592: A problem in the shadow pagetable code allowed a malicious or\n  buggy HVM guest to cause DoS or cause hypervisor memory corruption potentially\n  allowing the guest to escalate its privilege (XSA-243 bsc#1061086)\n- CVE-2017-15594: Problematic handling of the selector fields in the Interrupt\n  Descriptor Table (IDT) allowed a malicious or buggy x86 PV guest to escalate\n  its privileges or cause DoS (XSA-244 bsc#1061087)\n- CVE-2017-15589: Intercepted I/O write operations with less than a full machine\n  word's worth of data were not properly handled, which allowed a malicious\n  unprivileged x86 HVM guest to obtain sensitive information from the host or\n  other guests (XSA-239 bsc#1061080)\n- CVE-2017-15595: In certain configurations of linear page tables a stack overflow\n  might have occured that allowed a malicious or buggy PV guest to cause DoS and\n  potentially privilege escalation and information leaks (XSA-240 bsc#1061081)\n- CVE-2017-15588: Under certain conditions x86 PV guests could have caused the\n  hypervisor to miss a necessary TLB flush for a page. This allowed a malicious\n  x86 PV guest to access all of system memory, allowing for privilege escalation,\n  DoS, and information leaks (XSA-241 bsc#1061082)\n- CVE-2017-15590: Multiple issues existed with the setup of PCI MSI interrupts\n  that allowed a malicious or buggy guest to cause DoS and potentially privilege\n  escalation and information leaks (XSA-237 bsc#1061076)\n",
            title: "Description of the patch",
         },
         {
            category: "details",
            text: "sleposp3-xen-13320,slessp3-xen-13320",
            title: "Patchnames",
         },
         {
            category: "legal_disclaimer",
            text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
            title: "Terms of use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://www.suse.com/support/security/contact/",
         name: "SUSE Product Security Team",
         namespace: "https://www.suse.com/",
      },
      references: [
         {
            category: "external",
            summary: "SUSE ratings",
            url: "https://www.suse.com/support/security/rating/",
         },
         {
            category: "self",
            summary: "URL of this CSAF notice",
            url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2812-1.json",
         },
         {
            category: "self",
            summary: "URL for SUSE-SU-2017:2812-1",
            url: "https://www.suse.com/support/update/announcement/2017/suse-su-20172812-1/",
         },
         {
            category: "self",
            summary: "E-Mail link for SUSE-SU-2017:2812-1",
            url: "https://lists.suse.com/pipermail/sle-security-updates/2017-October/003346.html",
         },
         {
            category: "self",
            summary: "SUSE Bug 1059777",
            url: "https://bugzilla.suse.com/1059777",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061076",
            url: "https://bugzilla.suse.com/1061076",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061080",
            url: "https://bugzilla.suse.com/1061080",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061081",
            url: "https://bugzilla.suse.com/1061081",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061082",
            url: "https://bugzilla.suse.com/1061082",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061084",
            url: "https://bugzilla.suse.com/1061084",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061086",
            url: "https://bugzilla.suse.com/1061086",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061087",
            url: "https://bugzilla.suse.com/1061087",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15588 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15588/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15589 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15589/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15590 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15590/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15592 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15592/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15593 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15593/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15594 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15594/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15595 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15595/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-5526 page",
            url: "https://www.suse.com/security/cve/CVE-2017-5526/",
         },
      ],
      title: "Security update for xen",
      tracking: {
         current_release_date: "2017-10-20T14:56:58Z",
         generator: {
            date: "2017-10-20T14:56:58Z",
            engine: {
               name: "cve-database.git:bin/generate-csaf.pl",
               version: "1",
            },
         },
         id: "SUSE-SU-2017:2812-1",
         initial_release_date: "2017-10-20T14:56:58Z",
         revision_history: [
            {
               date: "2017-10-20T14:56:58Z",
               number: "1",
               summary: "Current version",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                        product: {
                           name: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                           product_id: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                        product: {
                           name: "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                           product_id: "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-libs-4.2.5_21-45.11.1.i586",
                        product: {
                           name: "xen-libs-4.2.5_21-45.11.1.i586",
                           product_id: "xen-libs-4.2.5_21-45.11.1.i586",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-tools-domU-4.2.5_21-45.11.1.i586",
                        product: {
                           name: "xen-tools-domU-4.2.5_21-45.11.1.i586",
                           product_id: "xen-tools-domU-4.2.5_21-45.11.1.i586",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "i586",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "xen-4.2.5_21-45.11.1.x86_64",
                        product: {
                           name: "xen-4.2.5_21-45.11.1.x86_64",
                           product_id: "xen-4.2.5_21-45.11.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-doc-html-4.2.5_21-45.11.1.x86_64",
                        product: {
                           name: "xen-doc-html-4.2.5_21-45.11.1.x86_64",
                           product_id: "xen-doc-html-4.2.5_21-45.11.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                        product: {
                           name: "xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                           product_id: "xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                        product: {
                           name: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                           product_id: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-libs-4.2.5_21-45.11.1.x86_64",
                        product: {
                           name: "xen-libs-4.2.5_21-45.11.1.x86_64",
                           product_id: "xen-libs-4.2.5_21-45.11.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                        product: {
                           name: "xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                           product_id: "xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-tools-4.2.5_21-45.11.1.x86_64",
                        product: {
                           name: "xen-tools-4.2.5_21-45.11.1.x86_64",
                           product_id: "xen-tools-4.2.5_21-45.11.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-tools-domU-4.2.5_21-45.11.1.x86_64",
                        product: {
                           name: "xen-tools-domU-4.2.5_21-45.11.1.x86_64",
                           product_id: "xen-tools-domU-4.2.5_21-45.11.1.x86_64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "x86_64",
               },
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Point of Sale 11 SP3",
                        product: {
                           name: "SUSE Linux Enterprise Point of Sale 11 SP3",
                           product_id: "SUSE Linux Enterprise Point of Sale 11 SP3",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sle-pos:11:sp3",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Server 11 SP3-LTSS",
                        product: {
                           name: "SUSE Linux Enterprise Server 11 SP3-LTSS",
                           product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:suse_sles_ltss:11:sp3",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "SUSE Linux Enterprise",
               },
            ],
            category: "vendor",
            name: "SUSE",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
               product_id: "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
            },
            product_reference: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
            relates_to_product_reference: "SUSE Linux Enterprise Point of Sale 11 SP3",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
               product_id: "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
            },
            product_reference: "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
            relates_to_product_reference: "SUSE Linux Enterprise Point of Sale 11 SP3",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-4.2.5_21-45.11.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
               product_id: "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
            },
            product_reference: "xen-libs-4.2.5_21-45.11.1.i586",
            relates_to_product_reference: "SUSE Linux Enterprise Point of Sale 11 SP3",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-tools-domU-4.2.5_21-45.11.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
               product_id: "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
            },
            product_reference: "xen-tools-domU-4.2.5_21-45.11.1.i586",
            relates_to_product_reference: "SUSE Linux Enterprise Point of Sale 11 SP3",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-4.2.5_21-45.11.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
            },
            product_reference: "xen-4.2.5_21-45.11.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-doc-html-4.2.5_21-45.11.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
            },
            product_reference: "xen-doc-html-4.2.5_21-45.11.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-doc-pdf-4.2.5_21-45.11.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
            },
            product_reference: "xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
            },
            product_reference: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
            },
            product_reference: "xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
            },
            product_reference: "xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-4.2.5_21-45.11.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
            },
            product_reference: "xen-libs-4.2.5_21-45.11.1.i586",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-4.2.5_21-45.11.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
            },
            product_reference: "xen-libs-4.2.5_21-45.11.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-32bit-4.2.5_21-45.11.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
            },
            product_reference: "xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-tools-4.2.5_21-45.11.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
            },
            product_reference: "xen-tools-4.2.5_21-45.11.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-tools-domU-4.2.5_21-45.11.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
            },
            product_reference: "xen-tools-domU-4.2.5_21-45.11.1.i586",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-tools-domU-4.2.5_21-45.11.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
               product_id: "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            },
            product_reference: "xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-LTSS",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2017-15588",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15588",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to execute arbitrary code on the host OS because of a race condition that can cause a stale TLB entry.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15588",
               url: "https://www.suse.com/security/cve/CVE-2017-15588",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061082 for CVE-2017-15588",
               url: "https://bugzilla.suse.com/1061082",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15588",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-20T14:56:58Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15588",
      },
      {
         cve: "CVE-2017-15589",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15589",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to obtain sensitive information from the host OS (or an arbitrary guest OS) because intercepted I/O operations can cause a write of data from uninitialized hypervisor stack memory.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15589",
               url: "https://www.suse.com/security/cve/CVE-2017-15589",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061080 for CVE-2017-15589",
               url: "https://bugzilla.suse.com/1061080",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15589",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 3.2,
                  baseSeverity: "LOW",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-20T14:56:58Z",
               details: "low",
            },
         ],
         title: "CVE-2017-15589",
      },
      {
         cve: "CVE-2017-15590",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15590",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because MSI mapping was mishandled.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15590",
               url: "https://www.suse.com/security/cve/CVE-2017-15590",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061076 for CVE-2017-15590",
               url: "https://bugzilla.suse.com/1061076",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15590",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-20T14:56:58Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15590",
      },
      {
         cve: "CVE-2017-15592",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15592",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because self-linear shadow mappings are mishandled for translated guests.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15592",
               url: "https://www.suse.com/security/cve/CVE-2017-15592",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061086 for CVE-2017-15592",
               url: "https://bugzilla.suse.com/1061086",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15592",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-20T14:56:58Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15592",
      },
      {
         cve: "CVE-2017-15593",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15593",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (memory leak) because reference counts are mishandled.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15593",
               url: "https://www.suse.com/security/cve/CVE-2017-15593",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061084 for CVE-2017-15593",
               url: "https://bugzilla.suse.com/1061084",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15593",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-20T14:56:58Z",
               details: "moderate",
            },
         ],
         title: "CVE-2017-15593",
      },
      {
         cve: "CVE-2017-15594",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15594",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 SVM PV guest OS users to cause a denial of service (hypervisor crash) or gain privileges because IDT settings are mishandled during CPU hotplugging.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15594",
               url: "https://www.suse.com/security/cve/CVE-2017-15594",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061087 for CVE-2017-15594",
               url: "https://bugzilla.suse.com/1061087",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15594",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-20T14:56:58Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15594",
      },
      {
         cve: "CVE-2017-15595",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15595",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (unbounded recursion, stack consumption, and hypervisor crash) or possibly gain privileges via crafted page-table stacking.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15595",
               url: "https://www.suse.com/security/cve/CVE-2017-15595",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061081 for CVE-2017-15595",
               url: "https://bugzilla.suse.com/1061081",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15595",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-20T14:56:58Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15595",
      },
      {
         cve: "CVE-2017-5526",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-5526",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
               "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-5526",
               url: "https://www.suse.com/security/cve/CVE-2017-5526",
            },
            {
               category: "external",
               summary: "SUSE Bug 1020589 for CVE-2017-5526",
               url: "https://bugzilla.suse.com/1020589",
            },
            {
               category: "external",
               summary: "SUSE Bug 1059777 for CVE-2017-5526",
               url: "https://bugzilla.suse.com/1059777",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-5526",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Point of Sale 11 SP3:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-html-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-doc-pdf-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-default-4.2.5_21_3.0.101_0.47.106.5-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-kmp-pae-4.2.5_21_3.0.101_0.47.106.5-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-32bit-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-libs-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-4.2.5_21-45.11.1.x86_64",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.i586",
                  "SUSE Linux Enterprise Server 11 SP3-LTSS:xen-tools-domU-4.2.5_21-45.11.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-20T14:56:58Z",
               details: "low",
            },
         ],
         title: "CVE-2017-5526",
      },
   ],
}

{
   document: {
      aggregate_severity: {
         namespace: "https://www.suse.com/support/security/rating/",
         text: "important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright 2024 SUSE LLC. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Security update for xen",
            title: "Title of the patch",
         },
         {
            category: "description",
            text: "This update for xen fixes several issues:\n\nThese security issues were fixed:\n\n- CVE-2017-5526: The ES1370 audio device emulation support was vulnerable to a\n  memory leakage issue allowing a privileged user inside the guest to cause a DoS\n  and/or potentially crash the Qemu process on the host (bsc#1059777)\n- CVE-2017-15593: Missing cleanup in the page type system allowed a malicious or\n  buggy PV guest to cause DoS (XSA-242 bsc#1061084)\n- CVE-2017-15592: A problem in the shadow pagetable code allowed a malicious or\n  buggy HVM guest to cause DoS or cause hypervisor memory corruption potentially\n  allowing the guest to escalate its privilege (XSA-243 bsc#1061086)\n- CVE-2017-15594: Problematic handling of the selector fields in the Interrupt\n  Descriptor Table (IDT) allowed a malicious or buggy x86 PV guest to escalate\n  its privileges or cause DoS (XSA-244 bsc#1061087)\n- CVE-2017-15591: Missing checks in the handling of DMOPs allowed malicious or\n  buggy stub domain kernels or tool stacks otherwise living outside of Domain0 to\n  cause a DoS (XSA-238 bsc#1061077)\n- CVE-2017-15589: Intercepted I/O write operations with less than a full machine\n  word's worth of data were not properly handled, which allowed a malicious\n  unprivileged x86 HVM guest to obtain sensitive information from the host or\n  other guests (XSA-239 bsc#1061080)\n- CVE-2017-15595: In certain configurations of linear page tables a stack overflow\n  might have occured that allowed a malicious or buggy PV guest to cause DoS and\n  potentially privilege escalation and information leaks (XSA-240 bsc#1061081)\n- CVE-2017-15588: Under certain conditions x86 PV guests could have caused the\n  hypervisor to miss a necessary TLB flush for a page. This allowed a malicious\n  x86 PV guest to access all of system memory, allowing for privilege escalation,\n  DoS, and information leaks (XSA-241 bsc#1061082)\n- CVE-2017-15590: Multiple issues existed with the setup of PCI MSI interrupts\n  that allowed a malicious or buggy guest to cause DoS and potentially privilege\n  escalation and information leaks (XSA-237 bsc#1061076)\n\nThis non-security issue was fixed:\n\n- bsc#1057358: Fixed boot when secure boot is enabled\n",
            title: "Description of the patch",
         },
         {
            category: "details",
            text: "SUSE-CAASP-ALL-2017-1785,SUSE-SLE-DESKTOP-12-SP2-2017-1785,SUSE-SLE-SDK-12-SP2-2017-1785,SUSE-SLE-SERVER-12-SP2-2017-1785",
            title: "Patchnames",
         },
         {
            category: "legal_disclaimer",
            text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
            title: "Terms of use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://www.suse.com/support/security/contact/",
         name: "SUSE Product Security Team",
         namespace: "https://www.suse.com/",
      },
      references: [
         {
            category: "external",
            summary: "SUSE ratings",
            url: "https://www.suse.com/support/security/rating/",
         },
         {
            category: "self",
            summary: "URL of this CSAF notice",
            url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2864-1.json",
         },
         {
            category: "self",
            summary: "URL for SUSE-SU-2017:2864-1",
            url: "https://www.suse.com/support/update/announcement/2017/suse-su-20172864-1/",
         },
         {
            category: "self",
            summary: "E-Mail link for SUSE-SU-2017:2864-1",
            url: "https://lists.suse.com/pipermail/sle-security-updates/2017-October/003360.html",
         },
         {
            category: "self",
            summary: "SUSE Bug 1027519",
            url: "https://bugzilla.suse.com/1027519",
         },
         {
            category: "self",
            summary: "SUSE Bug 1057358",
            url: "https://bugzilla.suse.com/1057358",
         },
         {
            category: "self",
            summary: "SUSE Bug 1059777",
            url: "https://bugzilla.suse.com/1059777",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061076",
            url: "https://bugzilla.suse.com/1061076",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061077",
            url: "https://bugzilla.suse.com/1061077",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061080",
            url: "https://bugzilla.suse.com/1061080",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061081",
            url: "https://bugzilla.suse.com/1061081",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061082",
            url: "https://bugzilla.suse.com/1061082",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061084",
            url: "https://bugzilla.suse.com/1061084",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061086",
            url: "https://bugzilla.suse.com/1061086",
         },
         {
            category: "self",
            summary: "SUSE Bug 1061087",
            url: "https://bugzilla.suse.com/1061087",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15588 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15588/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15589 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15589/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15590 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15590/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15591 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15591/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15592 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15592/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15593 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15593/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15594 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15594/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-15595 page",
            url: "https://www.suse.com/security/cve/CVE-2017-15595/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-5526 page",
            url: "https://www.suse.com/security/cve/CVE-2017-5526/",
         },
      ],
      title: "Security update for xen",
      tracking: {
         current_release_date: "2017-10-27T09:33:53Z",
         generator: {
            date: "2017-10-27T09:33:53Z",
            engine: {
               name: "cve-database.git:bin/generate-csaf.pl",
               version: "1",
            },
         },
         id: "SUSE-SU-2017:2864-1",
         initial_release_date: "2017-10-27T09:33:53Z",
         revision_history: [
            {
               date: "2017-10-27T09:33:53Z",
               number: "1",
               summary: "Current version",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "xen-devel-4.7.3_06-43.15.1.aarch64",
                        product: {
                           name: "xen-devel-4.7.3_06-43.15.1.aarch64",
                           product_id: "xen-devel-4.7.3_06-43.15.1.aarch64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "aarch64",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "xen-4.7.3_06-43.15.1.x86_64",
                        product: {
                           name: "xen-4.7.3_06-43.15.1.x86_64",
                           product_id: "xen-4.7.3_06-43.15.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-libs-4.7.3_06-43.15.1.x86_64",
                        product: {
                           name: "xen-libs-4.7.3_06-43.15.1.x86_64",
                           product_id: "xen-libs-4.7.3_06-43.15.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                        product: {
                           name: "xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                           product_id: "xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-devel-4.7.3_06-43.15.1.x86_64",
                        product: {
                           name: "xen-devel-4.7.3_06-43.15.1.x86_64",
                           product_id: "xen-devel-4.7.3_06-43.15.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-doc-html-4.7.3_06-43.15.1.x86_64",
                        product: {
                           name: "xen-doc-html-4.7.3_06-43.15.1.x86_64",
                           product_id: "xen-doc-html-4.7.3_06-43.15.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-tools-4.7.3_06-43.15.1.x86_64",
                        product: {
                           name: "xen-tools-4.7.3_06-43.15.1.x86_64",
                           product_id: "xen-tools-4.7.3_06-43.15.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                        product: {
                           name: "xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                           product_id: "xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "x86_64",
               },
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Desktop 12 SP2",
                        product: {
                           name: "SUSE Linux Enterprise Desktop 12 SP2",
                           product_id: "SUSE Linux Enterprise Desktop 12 SP2",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sled:12:sp2",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Software Development Kit 12 SP2",
                        product: {
                           name: "SUSE Linux Enterprise Software Development Kit 12 SP2",
                           product_id: "SUSE Linux Enterprise Software Development Kit 12 SP2",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sle-sdk:12:sp2",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Server 12 SP2",
                        product: {
                           name: "SUSE Linux Enterprise Server 12 SP2",
                           product_id: "SUSE Linux Enterprise Server 12 SP2",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sles:12:sp2",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                        product: {
                           name: "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                           product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sles_sap:12:sp2",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "SUSE Linux Enterprise",
               },
            ],
            category: "vendor",
            name: "SUSE",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
               product_id: "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
               product_id: "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-libs-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-32bit-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
               product_id: "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-devel-4.7.3_06-43.15.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
               product_id: "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
            },
            product_reference: "xen-devel-4.7.3_06-43.15.1.aarch64",
            relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-devel-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
               product_id: "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-devel-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
               product_id: "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-doc-html-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
               product_id: "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-doc-html-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
               product_id: "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-libs-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-32bit-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
               product_id: "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-tools-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
               product_id: "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-tools-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-tools-domU-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
               product_id: "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-tools-domU-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-doc-html-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-doc-html-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-libs-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-libs-32bit-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-tools-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-tools-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "xen-tools-domU-4.7.3_06-43.15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
            },
            product_reference: "xen-tools-domU-4.7.3_06-43.15.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2017-15588",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15588",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to execute arbitrary code on the host OS because of a race condition that can cause a stale TLB entry.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15588",
               url: "https://www.suse.com/security/cve/CVE-2017-15588",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061082 for CVE-2017-15588",
               url: "https://bugzilla.suse.com/1061082",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15588",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-27T09:33:53Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15588",
      },
      {
         cve: "CVE-2017-15589",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15589",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to obtain sensitive information from the host OS (or an arbitrary guest OS) because intercepted I/O operations can cause a write of data from uninitialized hypervisor stack memory.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15589",
               url: "https://www.suse.com/security/cve/CVE-2017-15589",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061080 for CVE-2017-15589",
               url: "https://bugzilla.suse.com/1061080",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15589",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 3.2,
                  baseSeverity: "LOW",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-27T09:33:53Z",
               details: "low",
            },
         ],
         title: "CVE-2017-15589",
      },
      {
         cve: "CVE-2017-15590",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15590",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because MSI mapping was mishandled.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15590",
               url: "https://www.suse.com/security/cve/CVE-2017-15590",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061076 for CVE-2017-15590",
               url: "https://bugzilla.suse.com/1061076",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15590",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-27T09:33:53Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15590",
      },
      {
         cve: "CVE-2017-15591",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15591",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen 4.5.x through 4.9.x allowing attackers (who control a stub domain kernel or tool stack) to cause a denial of service (host OS crash) because of a missing comparison (of range start to range end) within the DMOP map/unmap implementation.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15591",
               url: "https://www.suse.com/security/cve/CVE-2017-15591",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061077 for CVE-2017-15591",
               url: "https://bugzilla.suse.com/1061077",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-27T09:33:53Z",
               details: "moderate",
            },
         ],
         title: "CVE-2017-15591",
      },
      {
         cve: "CVE-2017-15592",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15592",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because self-linear shadow mappings are mishandled for translated guests.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15592",
               url: "https://www.suse.com/security/cve/CVE-2017-15592",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061086 for CVE-2017-15592",
               url: "https://bugzilla.suse.com/1061086",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15592",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-27T09:33:53Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15592",
      },
      {
         cve: "CVE-2017-15593",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15593",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (memory leak) because reference counts are mishandled.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15593",
               url: "https://www.suse.com/security/cve/CVE-2017-15593",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061084 for CVE-2017-15593",
               url: "https://bugzilla.suse.com/1061084",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15593",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-27T09:33:53Z",
               details: "moderate",
            },
         ],
         title: "CVE-2017-15593",
      },
      {
         cve: "CVE-2017-15594",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15594",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 SVM PV guest OS users to cause a denial of service (hypervisor crash) or gain privileges because IDT settings are mishandled during CPU hotplugging.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15594",
               url: "https://www.suse.com/security/cve/CVE-2017-15594",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061087 for CVE-2017-15594",
               url: "https://bugzilla.suse.com/1061087",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15594",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-27T09:33:53Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15594",
      },
      {
         cve: "CVE-2017-15595",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-15595",
            },
         ],
         notes: [
            {
               category: "general",
               text: "An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (unbounded recursion, stack consumption, and hypervisor crash) or possibly gain privileges via crafted page-table stacking.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-15595",
               url: "https://www.suse.com/security/cve/CVE-2017-15595",
            },
            {
               category: "external",
               summary: "SUSE Bug 1061081 for CVE-2017-15595",
               url: "https://bugzilla.suse.com/1061081",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-15595",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-27T09:33:53Z",
               details: "important",
            },
         ],
         title: "CVE-2017-15595",
      },
      {
         cve: "CVE-2017-5526",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-5526",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-5526",
               url: "https://www.suse.com/security/cve/CVE-2017-5526",
            },
            {
               category: "external",
               summary: "SUSE Bug 1020589 for CVE-2017-5526",
               url: "https://bugzilla.suse.com/1020589",
            },
            {
               category: "external",
               summary: "SUSE Bug 1059777 for CVE-2017-5526",
               url: "https://bugzilla.suse.com/1059777",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-5526",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-doc-html-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-32bit-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-libs-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP2:xen-tools-domU-4.7.3_06-43.15.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP2:xen-devel-4.7.3_06-43.15.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-10-27T09:33:53Z",
               details: "low",
            },
         ],
         title: "CVE-2017-5526",
      },
   ],
}

{
   document: {
      aggregate_severity: {
         namespace: "https://www.suse.com/support/security/rating/",
         text: "important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright 2024 SUSE LLC. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Security update for qemu",
            title: "Title of the patch",
         },
         {
            category: "description",
            text: "\nThis update for qemu fixes several issues.\n\nThese security issues were fixed:\n\n- CVE-2017-2620: In CIRRUS_BLTMODE_MEMSYSSRC mode the bitblit copy routine cirrus_bitblt_cputovideo failed to check the memory region, allowing for an out-of-bounds write that allows for privilege escalation (bsc#1024972)\n- CVE-2017-2615: An error in the bitblt copy operation could have allowed a malicious guest administrator to cause an out of bounds memory access, possibly leading to information disclosure or privilege escalation (bsc#1023004)\n- CVE-2017-5856: The MegaRAID SAS 8708EM2 Host Bus Adapter emulation support was vulnerable to a memory leakage issue allowing a privileged user to leak host memory resulting in DoS (bsc#1023053)\n- CVE-2016-9776: The ColdFire Fast Ethernet Controller emulator support was vulnerable to an infinite loop issue while receiving packets in 'mcf_fec_receive'. A privileged user/process inside guest could have used this issue to crash the Qemu process on the host leading to DoS (bsc#1013285)\n- CVE-2016-9911: The USB EHCI Emulation support was vulnerable to a memory leakage issue while processing packet data in 'ehci_init_transfer'. A guest user/process could have used this issue to leak host memory, resulting in DoS for the host (bsc#1014111)\n- CVE-2016-9907: The USB redirector usb-guest support was vulnerable to a memory leakage flaw when destroying the USB redirector in 'usbredir_handle_destroy'.  A guest user/process could have used this issue to leak host memory, resulting in DoS for a host (bsc#1014109)\n- CVE-2016-9921: The Cirrus CLGD 54xx VGA Emulator support was vulnerable to a divide by zero issue while copying VGA data. A privileged user inside guest could have used this flaw to crash the process instance on the host, resulting in DoS (bsc#1014702)\n- CVE-2016-9922: The Cirrus CLGD 54xx VGA Emulator support was vulnerable to a divide by zero issue while copying VGA data. A privileged user inside guest could have used this flaw to crash the process instance on the host, resulting in DoS (bsc#1014702)\n- CVE-2016-10155: The virtual hardware watchdog 'wdt_i6300esb' was vulnerable to a memory leakage issue allowing a privileged user to cause a DoS and/or potentially crash the Qemu process on the host (bsc#1021129)\n- CVE-2017-5526: The ES1370 audio device emulation support was vulnerable to a memory leakage issue allowing a privileged user inside the guest to cause a DoS and/or potentially crash the Qemu process on the host (bsc#1020589)\n- CVE-2017-5525: The ac97 audio device emulation support was vulnerable to a memory leakage issue allowing a privileged user inside the guest to cause a DoS and/or potentially crash the Qemu process on the host (bsc#1020491)\n- CVE-2017-5667: The SDHCI device emulation support was vulnerable to an OOB heap access issue allowing a privileged user inside the guest to crash the Qemu process resulting in DoS or potentially execute arbitrary code with privileges of the Qemu process on the host (bsc#1022541)\n- CVE-2017-5898: The CCID Card device emulator support was vulnerable to an integer overflow allowing a privileged user inside the guest to crash the Qemu process resulting in DoS (bnc#1023907)\n\nThese non-security issues were fixed:\n\n- Fix post script for qemu-guest-agent rpm to actually activate the guest agent at rpm install time\n- Fixed various inaccuracies in cirrus vga device emulation\n- Fixed cause of infrequent migration failures from bad virtio device state (bsc#1020928)\n- Fixed virtio interface failure (bsc#1015048)\n- Fixed graphical update errors introduced by previous security fix (bsc#1016779)\n- Fixed uint64 property parsing and add regression tests (bsc#937125)\n",
            title: "Description of the patch",
         },
         {
            category: "details",
            text: "SUSE-SLE-DESKTOP-12-SP1-2017-740,SUSE-SLE-SERVER-12-SP1-2017-740",
            title: "Patchnames",
         },
         {
            category: "legal_disclaimer",
            text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
            title: "Terms of use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://www.suse.com/support/security/contact/",
         name: "SUSE Product Security Team",
         namespace: "https://www.suse.com/",
      },
      references: [
         {
            category: "external",
            summary: "SUSE ratings",
            url: "https://www.suse.com/support/security/rating/",
         },
         {
            category: "self",
            summary: "URL of this CSAF notice",
            url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1241-1.json",
         },
         {
            category: "self",
            summary: "URL for SUSE-SU-2017:1241-1",
            url: "https://www.suse.com/support/update/announcement/2017/suse-su-20171241-1/",
         },
         {
            category: "self",
            summary: "E-Mail link for SUSE-SU-2017:1241-1",
            url: "https://lists.suse.com/pipermail/sle-security-updates/2017-May/002856.html",
         },
         {
            category: "self",
            summary: "SUSE Bug 1013285",
            url: "https://bugzilla.suse.com/1013285",
         },
         {
            category: "self",
            summary: "SUSE Bug 1014109",
            url: "https://bugzilla.suse.com/1014109",
         },
         {
            category: "self",
            summary: "SUSE Bug 1014111",
            url: "https://bugzilla.suse.com/1014111",
         },
         {
            category: "self",
            summary: "SUSE Bug 1014702",
            url: "https://bugzilla.suse.com/1014702",
         },
         {
            category: "self",
            summary: "SUSE Bug 1015048",
            url: "https://bugzilla.suse.com/1015048",
         },
         {
            category: "self",
            summary: "SUSE Bug 1015169",
            url: "https://bugzilla.suse.com/1015169",
         },
         {
            category: "self",
            summary: "SUSE Bug 1016779",
            url: "https://bugzilla.suse.com/1016779",
         },
         {
            category: "self",
            summary: "SUSE Bug 1020491",
            url: "https://bugzilla.suse.com/1020491",
         },
         {
            category: "self",
            summary: "SUSE Bug 1020589",
            url: "https://bugzilla.suse.com/1020589",
         },
         {
            category: "self",
            summary: "SUSE Bug 1020928",
            url: "https://bugzilla.suse.com/1020928",
         },
         {
            category: "self",
            summary: "SUSE Bug 1021129",
            url: "https://bugzilla.suse.com/1021129",
         },
         {
            category: "self",
            summary: "SUSE Bug 1022541",
            url: "https://bugzilla.suse.com/1022541",
         },
         {
            category: "self",
            summary: "SUSE Bug 1023004",
            url: "https://bugzilla.suse.com/1023004",
         },
         {
            category: "self",
            summary: "SUSE Bug 1023053",
            url: "https://bugzilla.suse.com/1023053",
         },
         {
            category: "self",
            summary: "SUSE Bug 1023907",
            url: "https://bugzilla.suse.com/1023907",
         },
         {
            category: "self",
            summary: "SUSE Bug 1024972",
            url: "https://bugzilla.suse.com/1024972",
         },
         {
            category: "self",
            summary: "SUSE Bug 937125",
            url: "https://bugzilla.suse.com/937125",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2016-10155 page",
            url: "https://www.suse.com/security/cve/CVE-2016-10155/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2016-9776 page",
            url: "https://www.suse.com/security/cve/CVE-2016-9776/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2016-9907 page",
            url: "https://www.suse.com/security/cve/CVE-2016-9907/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2016-9911 page",
            url: "https://www.suse.com/security/cve/CVE-2016-9911/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2016-9921 page",
            url: "https://www.suse.com/security/cve/CVE-2016-9921/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2016-9922 page",
            url: "https://www.suse.com/security/cve/CVE-2016-9922/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-2615 page",
            url: "https://www.suse.com/security/cve/CVE-2017-2615/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-2620 page",
            url: "https://www.suse.com/security/cve/CVE-2017-2620/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-5525 page",
            url: "https://www.suse.com/security/cve/CVE-2017-5525/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-5526 page",
            url: "https://www.suse.com/security/cve/CVE-2017-5526/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-5667 page",
            url: "https://www.suse.com/security/cve/CVE-2017-5667/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-5856 page",
            url: "https://www.suse.com/security/cve/CVE-2017-5856/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2017-5898 page",
            url: "https://www.suse.com/security/cve/CVE-2017-5898/",
         },
      ],
      title: "Security update for qemu",
      tracking: {
         current_release_date: "2017-05-11T08:39:07Z",
         generator: {
            date: "2017-05-11T08:39:07Z",
            engine: {
               name: "cve-database.git:bin/generate-csaf.pl",
               version: "1",
            },
         },
         id: "SUSE-SU-2017:1241-1",
         initial_release_date: "2017-05-11T08:39:07Z",
         revision_history: [
            {
               date: "2017-05-11T08:39:07Z",
               number: "1",
               summary: "Current version",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "qemu-ipxe-1.0.0-32.11.noarch",
                        product: {
                           name: "qemu-ipxe-1.0.0-32.11.noarch",
                           product_id: "qemu-ipxe-1.0.0-32.11.noarch",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-seabios-1.8.1-32.11.noarch",
                        product: {
                           name: "qemu-seabios-1.8.1-32.11.noarch",
                           product_id: "qemu-seabios-1.8.1-32.11.noarch",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-sgabios-8-32.11.noarch",
                        product: {
                           name: "qemu-sgabios-8-32.11.noarch",
                           product_id: "qemu-sgabios-8-32.11.noarch",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-vgabios-1.8.1-32.11.noarch",
                        product: {
                           name: "qemu-vgabios-1.8.1-32.11.noarch",
                           product_id: "qemu-vgabios-1.8.1-32.11.noarch",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "noarch",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "qemu-2.3.1-32.11.ppc64le",
                        product: {
                           name: "qemu-2.3.1-32.11.ppc64le",
                           product_id: "qemu-2.3.1-32.11.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-block-curl-2.3.1-32.11.ppc64le",
                        product: {
                           name: "qemu-block-curl-2.3.1-32.11.ppc64le",
                           product_id: "qemu-block-curl-2.3.1-32.11.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-guest-agent-2.3.1-32.11.ppc64le",
                        product: {
                           name: "qemu-guest-agent-2.3.1-32.11.ppc64le",
                           product_id: "qemu-guest-agent-2.3.1-32.11.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-lang-2.3.1-32.11.ppc64le",
                        product: {
                           name: "qemu-lang-2.3.1-32.11.ppc64le",
                           product_id: "qemu-lang-2.3.1-32.11.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-ppc-2.3.1-32.11.ppc64le",
                        product: {
                           name: "qemu-ppc-2.3.1-32.11.ppc64le",
                           product_id: "qemu-ppc-2.3.1-32.11.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-tools-2.3.1-32.11.ppc64le",
                        product: {
                           name: "qemu-tools-2.3.1-32.11.ppc64le",
                           product_id: "qemu-tools-2.3.1-32.11.ppc64le",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "ppc64le",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "qemu-2.3.1-32.11.s390x",
                        product: {
                           name: "qemu-2.3.1-32.11.s390x",
                           product_id: "qemu-2.3.1-32.11.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-block-curl-2.3.1-32.11.s390x",
                        product: {
                           name: "qemu-block-curl-2.3.1-32.11.s390x",
                           product_id: "qemu-block-curl-2.3.1-32.11.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-guest-agent-2.3.1-32.11.s390x",
                        product: {
                           name: "qemu-guest-agent-2.3.1-32.11.s390x",
                           product_id: "qemu-guest-agent-2.3.1-32.11.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-kvm-2.3.1-32.11.s390x",
                        product: {
                           name: "qemu-kvm-2.3.1-32.11.s390x",
                           product_id: "qemu-kvm-2.3.1-32.11.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-lang-2.3.1-32.11.s390x",
                        product: {
                           name: "qemu-lang-2.3.1-32.11.s390x",
                           product_id: "qemu-lang-2.3.1-32.11.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-s390-2.3.1-32.11.s390x",
                        product: {
                           name: "qemu-s390-2.3.1-32.11.s390x",
                           product_id: "qemu-s390-2.3.1-32.11.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-tools-2.3.1-32.11.s390x",
                        product: {
                           name: "qemu-tools-2.3.1-32.11.s390x",
                           product_id: "qemu-tools-2.3.1-32.11.s390x",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "s390x",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "qemu-2.3.1-32.11.x86_64",
                        product: {
                           name: "qemu-2.3.1-32.11.x86_64",
                           product_id: "qemu-2.3.1-32.11.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-block-curl-2.3.1-32.11.x86_64",
                        product: {
                           name: "qemu-block-curl-2.3.1-32.11.x86_64",
                           product_id: "qemu-block-curl-2.3.1-32.11.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-kvm-2.3.1-32.11.x86_64",
                        product: {
                           name: "qemu-kvm-2.3.1-32.11.x86_64",
                           product_id: "qemu-kvm-2.3.1-32.11.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-tools-2.3.1-32.11.x86_64",
                        product: {
                           name: "qemu-tools-2.3.1-32.11.x86_64",
                           product_id: "qemu-tools-2.3.1-32.11.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-x86-2.3.1-32.11.x86_64",
                        product: {
                           name: "qemu-x86-2.3.1-32.11.x86_64",
                           product_id: "qemu-x86-2.3.1-32.11.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-block-rbd-2.3.1-32.11.x86_64",
                        product: {
                           name: "qemu-block-rbd-2.3.1-32.11.x86_64",
                           product_id: "qemu-block-rbd-2.3.1-32.11.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-guest-agent-2.3.1-32.11.x86_64",
                        product: {
                           name: "qemu-guest-agent-2.3.1-32.11.x86_64",
                           product_id: "qemu-guest-agent-2.3.1-32.11.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "qemu-lang-2.3.1-32.11.x86_64",
                        product: {
                           name: "qemu-lang-2.3.1-32.11.x86_64",
                           product_id: "qemu-lang-2.3.1-32.11.x86_64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "x86_64",
               },
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Desktop 12 SP1",
                        product: {
                           name: "SUSE Linux Enterprise Desktop 12 SP1",
                           product_id: "SUSE Linux Enterprise Desktop 12 SP1",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sled:12:sp1",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Server 12 SP1",
                        product: {
                           name: "SUSE Linux Enterprise Server 12 SP1",
                           product_id: "SUSE Linux Enterprise Server 12 SP1",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sles:12:sp1",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
                        product: {
                           name: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
                           product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sles_sap:12:sp1",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "SUSE Linux Enterprise",
               },
            ],
            category: "vendor",
            name: "SUSE",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
               product_id: "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-block-curl-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
               product_id: "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-block-curl-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-ipxe-1.0.0-32.11.noarch as component of SUSE Linux Enterprise Desktop 12 SP1",
               product_id: "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
            },
            product_reference: "qemu-ipxe-1.0.0-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-kvm-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
               product_id: "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-kvm-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-seabios-1.8.1-32.11.noarch as component of SUSE Linux Enterprise Desktop 12 SP1",
               product_id: "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
            },
            product_reference: "qemu-seabios-1.8.1-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-sgabios-8-32.11.noarch as component of SUSE Linux Enterprise Desktop 12 SP1",
               product_id: "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
            },
            product_reference: "qemu-sgabios-8-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-tools-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
               product_id: "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-tools-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-vgabios-1.8.1-32.11.noarch as component of SUSE Linux Enterprise Desktop 12 SP1",
               product_id: "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
            },
            product_reference: "qemu-vgabios-1.8.1-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-x86-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
               product_id: "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-x86-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Desktop 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-block-curl-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-block-curl-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-block-curl-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-block-curl-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-block-curl-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-block-curl-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-block-rbd-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-block-rbd-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-guest-agent-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-guest-agent-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-guest-agent-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-guest-agent-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-guest-agent-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-guest-agent-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-ipxe-1.0.0-32.11.noarch as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
            },
            product_reference: "qemu-ipxe-1.0.0-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-kvm-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-kvm-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-kvm-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-kvm-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-lang-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-lang-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-lang-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-lang-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-lang-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-lang-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-ppc-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-ppc-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-s390-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-s390-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-seabios-1.8.1-32.11.noarch as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
            },
            product_reference: "qemu-seabios-1.8.1-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-sgabios-8-32.11.noarch as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
            },
            product_reference: "qemu-sgabios-8-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-tools-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-tools-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-tools-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-tools-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-tools-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-tools-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-vgabios-1.8.1-32.11.noarch as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
            },
            product_reference: "qemu-vgabios-1.8.1-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-x86-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
               product_id: "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-x86-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-block-curl-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-block-curl-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-block-curl-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-block-curl-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-block-curl-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-block-curl-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-block-rbd-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-block-rbd-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-guest-agent-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-guest-agent-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-guest-agent-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-guest-agent-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-guest-agent-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-guest-agent-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-ipxe-1.0.0-32.11.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
            },
            product_reference: "qemu-ipxe-1.0.0-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-kvm-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-kvm-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-kvm-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-kvm-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-lang-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-lang-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-lang-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-lang-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-lang-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-lang-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-ppc-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-ppc-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-s390-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-s390-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-seabios-1.8.1-32.11.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
            },
            product_reference: "qemu-seabios-1.8.1-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-sgabios-8-32.11.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
            },
            product_reference: "qemu-sgabios-8-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-tools-2.3.1-32.11.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
            },
            product_reference: "qemu-tools-2.3.1-32.11.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-tools-2.3.1-32.11.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
            },
            product_reference: "qemu-tools-2.3.1-32.11.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-tools-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-tools-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-vgabios-1.8.1-32.11.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
            },
            product_reference: "qemu-vgabios-1.8.1-32.11.noarch",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "qemu-x86-2.3.1-32.11.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            },
            product_reference: "qemu-x86-2.3.1-32.11.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2016-10155",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2016-10155",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2016-10155",
               url: "https://www.suse.com/security/cve/CVE-2016-10155",
            },
            {
               category: "external",
               summary: "SUSE Bug 1021129 for CVE-2016-10155",
               url: "https://bugzilla.suse.com/1021129",
            },
            {
               category: "external",
               summary: "SUSE Bug 1024183 for CVE-2016-10155",
               url: "https://bugzilla.suse.com/1024183",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2016-10155",
      },
      {
         cve: "CVE-2016-9776",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2016-9776",
            },
         ],
         notes: [
            {
               category: "general",
               text: "QEMU (aka Quick Emulator) built with the ColdFire Fast Ethernet Controller emulator support is vulnerable to an infinite loop issue. It could occur while receiving packets in 'mcf_fec_receive'. A privileged user/process inside guest could use this issue to crash the QEMU process on the host leading to DoS.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2016-9776",
               url: "https://www.suse.com/security/cve/CVE-2016-9776",
            },
            {
               category: "external",
               summary: "SUSE Bug 1013285 for CVE-2016-9776",
               url: "https://bugzilla.suse.com/1013285",
            },
            {
               category: "external",
               summary: "SUSE Bug 1013657 for CVE-2016-9776",
               url: "https://bugzilla.suse.com/1013657",
            },
            {
               category: "external",
               summary: "SUSE Bug 1024182 for CVE-2016-9776",
               url: "https://bugzilla.suse.com/1024182",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2016-9776",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 3,
                  baseSeverity: "LOW",
                  vectorString: "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2016-9776",
      },
      {
         cve: "CVE-2016-9907",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2016-9907",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw. It could occur while destroying the USB redirector in 'usbredir_handle_destroy'. A guest user/process could use this issue to leak host memory, resulting in DoS for a host.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2016-9907",
               url: "https://www.suse.com/security/cve/CVE-2016-9907",
            },
            {
               category: "external",
               summary: "SUSE Bug 1014109 for CVE-2016-9907",
               url: "https://bugzilla.suse.com/1014109",
            },
            {
               category: "external",
               summary: "SUSE Bug 1014490 for CVE-2016-9907",
               url: "https://bugzilla.suse.com/1014490",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2016-9907",
      },
      {
         cve: "CVE-2016-9911",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2016-9911",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Quick Emulator (Qemu) built with the USB EHCI Emulation support is vulnerable to a memory leakage issue. It could occur while processing packet data in 'ehci_init_transfer'. A guest user/process could use this issue to leak host memory, resulting in DoS for a host.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2016-9911",
               url: "https://www.suse.com/security/cve/CVE-2016-9911",
            },
            {
               category: "external",
               summary: "SUSE Bug 1014111 for CVE-2016-9911",
               url: "https://bugzilla.suse.com/1014111",
            },
            {
               category: "external",
               summary: "SUSE Bug 1014507 for CVE-2016-9911",
               url: "https://bugzilla.suse.com/1014507",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2016-9911",
      },
      {
         cve: "CVE-2016-9921",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2016-9921",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Quick emulator (Qemu) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to a divide by zero issue. It could occur while copying VGA data when cirrus graphics mode was set to be VGA. A privileged user inside guest could use this flaw to crash the Qemu process instance on the host, resulting in DoS.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2016-9921",
               url: "https://www.suse.com/security/cve/CVE-2016-9921",
            },
            {
               category: "external",
               summary: "SUSE Bug 1014702 for CVE-2016-9921",
               url: "https://bugzilla.suse.com/1014702",
            },
            {
               category: "external",
               summary: "SUSE Bug 1015169 for CVE-2016-9921",
               url: "https://bugzilla.suse.com/1015169",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2016-9921",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2016-9921",
      },
      {
         cve: "CVE-2016-9922",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2016-9922",
            },
         ],
         notes: [
            {
               category: "general",
               text: "The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, allows local guest OS privileged users to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving blit pitch values.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2016-9922",
               url: "https://www.suse.com/security/cve/CVE-2016-9922",
            },
            {
               category: "external",
               summary: "SUSE Bug 1014702 for CVE-2016-9922",
               url: "https://bugzilla.suse.com/1014702",
            },
            {
               category: "external",
               summary: "SUSE Bug 1015169 for CVE-2016-9922",
               url: "https://bugzilla.suse.com/1015169",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2016-9922",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2016-9922",
      },
      {
         cve: "CVE-2017-2615",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-2615",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process resulting in DoS or potentially execute arbitrary code on the host with privileges of QEMU process on the host.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-2615",
               url: "https://www.suse.com/security/cve/CVE-2017-2615",
            },
            {
               category: "external",
               summary: "SUSE Bug 1023004 for CVE-2017-2615",
               url: "https://bugzilla.suse.com/1023004",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-2615",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "moderate",
            },
         ],
         title: "CVE-2017-2615",
      },
      {
         cve: "CVE-2017-2620",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-2620",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user inside guest could use this flaw to crash the QEMU process OR potentially execute arbitrary code on host with privileges of the QEMU process.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-2620",
               url: "https://www.suse.com/security/cve/CVE-2017-2620",
            },
            {
               category: "external",
               summary: "SUSE Bug 1024834 for CVE-2017-2620",
               url: "https://bugzilla.suse.com/1024834",
            },
            {
               category: "external",
               summary: "SUSE Bug 1024972 for CVE-2017-2620",
               url: "https://bugzilla.suse.com/1024972",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-2620",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.9,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "moderate",
            },
         ],
         title: "CVE-2017-2620",
      },
      {
         cve: "CVE-2017-5525",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-5525",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Memory leak in hw/audio/ac97.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-5525",
               url: "https://www.suse.com/security/cve/CVE-2017-5525",
            },
            {
               category: "external",
               summary: "SUSE Bug 1020491 for CVE-2017-5525",
               url: "https://bugzilla.suse.com/1020491",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2017-5525",
      },
      {
         cve: "CVE-2017-5526",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-5526",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-5526",
               url: "https://www.suse.com/security/cve/CVE-2017-5526",
            },
            {
               category: "external",
               summary: "SUSE Bug 1020589 for CVE-2017-5526",
               url: "https://bugzilla.suse.com/1020589",
            },
            {
               category: "external",
               summary: "SUSE Bug 1059777 for CVE-2017-5526",
               url: "https://bugzilla.suse.com/1059777",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178658 for CVE-2017-5526",
               url: "https://bugzilla.suse.com/1178658",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2017-5526",
      },
      {
         cve: "CVE-2017-5667",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-5667",
            },
         ],
         notes: [
            {
               category: "general",
               text: "The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds heap access and crash) or execute arbitrary code on the QEMU host via vectors involving the data transfer length.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-5667",
               url: "https://www.suse.com/security/cve/CVE-2017-5667",
            },
            {
               category: "external",
               summary: "SUSE Bug 1022541 for CVE-2017-5667",
               url: "https://bugzilla.suse.com/1022541",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "moderate",
            },
         ],
         title: "CVE-2017-5667",
      },
      {
         cve: "CVE-2017-5856",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-5856",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over 2 Gb.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-5856",
               url: "https://www.suse.com/security/cve/CVE-2017-5856",
            },
            {
               category: "external",
               summary: "SUSE Bug 1023053 for CVE-2017-5856",
               url: "https://bugzilla.suse.com/1023053",
            },
            {
               category: "external",
               summary: "SUSE Bug 1024186 for CVE-2017-5856",
               url: "https://bugzilla.suse.com/1024186",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2017-5856",
      },
      {
         cve: "CVE-2017-5898",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2017-5898",
            },
         ],
         notes: [
            {
               category: "general",
               text: "Integer overflow in the emulated_apdu_from_guest function in usb/dev-smartcard-reader.c in Quick Emulator (Qemu), when built with the CCID Card device emulator support, allows local users to cause a denial of service (application crash) via a large Application Protocol Data Units (APDU) unit.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2017-5898",
               url: "https://www.suse.com/security/cve/CVE-2017-5898",
            },
            {
               category: "external",
               summary: "SUSE Bug 1023907 for CVE-2017-5898",
               url: "https://bugzilla.suse.com/1023907",
            },
            {
               category: "external",
               summary: "SUSE Bug 1024307 for CVE-2017-5898",
               url: "https://bugzilla.suse.com/1024307",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Desktop 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-curl-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-block-rbd-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-guest-agent-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ipxe-1.0.0-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-kvm-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-lang-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-ppc-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-s390-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-seabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-sgabios-8-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-tools-2.3.1-32.11.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-vgabios-1.8.1-32.11.noarch",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP1:qemu-x86-2.3.1-32.11.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2017-05-11T08:39:07Z",
               details: "low",
            },
         ],
         title: "CVE-2017-5898",
      },
   ],
}