A qemu security update has been released for Debian GNU/Linux 10 to address multiple security issues.

DLA 3099-1: qemu security update

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3099-1 debian-lts@lists.debian.org
  https://www.debian.org/lts/security/ Abhijith PA
September 05, 2022   https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package : qemu
Version : 1:3.1+dfsg-8+deb10u9
CVE ID : CVE-2020-13253 CVE-2020-15469 CVE-2020-15859 CVE-2020-25084
CVE-2020-25085 CVE-2020-25624 CVE-2020-25625 CVE-2020-25723
CVE-2020-27617 CVE-2020-27821 CVE-2020-28916 CVE-2020-29129
CVE-2020-29443 CVE-2020-35504 CVE-2020-35505 CVE-2021-3392
CVE-2021-3416 CVE-2021-3507 CVE-2021-3527 CVE-2021-3582
CVE-2021-3607 CVE-2021-3608 CVE-2021-3682 CVE-2021-3713
CVE-2021-3748 CVE-2021-3930 CVE-2021-4206 CVE-2021-4207
CVE-2021-20181 CVE-2021-20196 CVE-2021-20203 CVE-2021-20221
CVE-2021-20257 CVE-2022-26354 CVE-2022-35414

Multiple security issues were discovered in QEMU, a fast processor
emulator, which could result in denial of service or the the execution
of arbitrary code.

For Debian 10 buster, these problems have been fixed in version
1:3.1+dfsg-8+deb10u9.

We recommend that you upgrade your qemu packages.

For the detailed security status of qemu please refer to
its security tracker page at:
  https://security-tracker.debian.org/tracker/qemu

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at:   https://wiki.debian.org/LTS