Lucene search
HistoryFeb 20, 2024 - 6:15 p.m.
CVE-2024-24474
qemu
integer underflow
buffer overflow
ti command
non-dma transfer length
fifo data
esp_do_nodma
async_len
QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len.
Related
osv
osv
CVE-2024-24474
2024-02-20 18:15:52
cvelist
cvelist
CVE-2024-24474
2024-02-20 00:00:00
ubuntucve
ubuntucve
CVE-2024-24474
2024-02-20 00:00:00
veracode
veracode
Buffer Overflow
2024-02-26 14:34:24
prion
prion
Integer overflow
2024-02-20 18:15:00
redhatcve
redhatcve
CVE-2024-24474
2024-02-22 12:32:16
debiancve
debiancve
CVE-2024-24474
2024-02-20 18:15:52
redos
redos
ROS-20240423-09
2024-04-23 00:00:00
cve
cve
CVE-2024-24474
2024-02-20 18:15:52
openvas
openvas
openSUSE: Security Advisory for qemu (SUSE-SU-2024:1394-1)
2024-04-25 00:00:00
openSUSE: Security Advisory for qemu (SUSE-SU-2024:1103-1)
2024-04-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1394-1)
2024-05-07 00:00:00
nessus
nessus
SUSE SLES15 Security Update : qemu (SUSE-SU-2024:1394-1)
2024-04-24 00:00:00
QEMU < 9.0.0 Multiple Vulnerabilities
2024-06-06 00:00:00
oraclelinux
oraclelinux
qemu-kvm security update
2024-06-03 00:00:00
virt:kvm_utils3 security update
2024-04-10 00:00:00