Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
oraclelinuxOracleLinuxELSA-2023-12835
HistorySep 22, 2023 - 12:00 a.m.

qemu security update

2023-09-2200:00:00
linux.oracle.com
9
qemu
security update
fixes
virtio-crypto
sym request
lsi controller
atomic memslot
accelerator blocker api
pcie
vhost-vdpa
cve-2023-3180
cve-2023-0330
cve-2023-3301
unix
orabug

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

1.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:S/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON

[15:4.2.1-28.el7]

  • virtio-crypto: verify src&dst buffer length for sym request (Zhenwei Pi) [Orabug: 35724113] {CVE-2023-3180}
  • hw/scsi/lsi53c895a: Fix reentrancy issues in the LSI controller (CVE-2023-0330) (Thomas Huth) [Orabug: 35724112] {CVE-2023-0330}
  • kvm: Atomic memslot updates (David Hildenbrand) [Orabug: 35719844]
  • KVM: keep track of running ioctls (Emanuele Giuseppe Esposito) [Orabug: 35719844]
  • accel: introduce accelerator blocker API (Emanuele Giuseppe Esposito) [Orabug: 35719844]
  • KVM: Use a big lock to replace per-kml slots_lock (Peter Xu) [Orabug: 35719844]
  • pcie: don’t set link state active if the slot is empty (Laurent Vivier) [Orabug: 35707933]
  • vhost-vdpa: do not cleanup the vdpa/vhost-net structures if peer nic is present (Ani Sinha) [Orabug: 35662850] {CVE-2023-3301}
OSVersionArchitecturePackageVersionFilename
oracle linux7srcqemu< 4.2.1-28.el7qemu-4.2.1-28.el7.src.rpm
oracle linux7srcqemu< 4.2.1-28.el7qemu-4.2.1-28.el7.src.rpm
oracle linux7srcqemu< 4.2.1-28.el7qemu-4.2.1-28.el7.src.rpm
oracle linux7aarch64ivshmem-tools< 4.2.1-28.el7ivshmem-tools-4.2.1-28.el7.aarch64.rpm
oracle linux7aarch64ivshmem-tools< 4.2.1-28.el7ivshmem-tools-4.2.1-28.el7.aarch64.rpm
oracle linux7aarch64qemu< 4.2.1-28.el7qemu-4.2.1-28.el7.aarch64.rpm
oracle linux7aarch64qemu< 4.2.1-28.el7qemu-4.2.1-28.el7.aarch64.rpm
oracle linux7aarch64qemu-block-gluster< 4.2.1-28.el7qemu-block-gluster-4.2.1-28.el7.aarch64.rpm
oracle linux7aarch64qemu-block-gluster< 4.2.1-28.el7qemu-block-gluster-4.2.1-28.el7.aarch64.rpm
oracle linux7aarch64qemu-block-iscsi< 4.2.1-28.el7qemu-block-iscsi-4.2.1-28.el7.aarch64.rpm
Rows per page:
1-10 of 341

Related

oraclelinux 4
nessus 45
openvas 31
debian 1
osv 7
cve 3
redhatcve 3
prion 3
cbl_mariner 2
veracode 3
debiancve 3
ubuntucve 3
redos 1
alpinelinux 2
amazon 3
almalinux 1
redhat 1
rosalinux 1
ubuntu 2
fedora 1
ics 1
oraclelinux
oraclelinux
qemu security update
2023-09-22 00:00:00
virt:kvm_utils1 security update
2024-02-12 00:00:00
kvm_utils3 security update
2023-10-07 00:00:00
nessus
nessus
Oracle Linux 7 : qemu (ELSA-2023-12834)
2023-09-22 00:00:00
Oracle Linux 7 : qemu (ELSA-2023-12835)
2023-09-22 00:00:00
Oracle Linux 8 : virt:kvm_utils1 (ELSA-2024-12152)
2024-02-12 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:3444-1)
2023-08-29 00:00:00
Debian: Security Advisory (DLA-3604-1)
2023-10-06 00:00:00
openSUSE: Security Advisory for qemu (SUSE-SU-2023:3082-1)
2024-03-04 00:00:00
debian
debian
[SECURITY] [DLA 3604-1] qemu security update
2023-10-05 16:14:21
osv
osv
qemu - security update
2023-10-05 00:00:00
CVE-2023-3301
2023-09-13 17:15:10
CVE-2023-0330
2023-03-06 23:15:11
cve
cve
CVE-2023-3301
2023-09-13 17:15:10
CVE-2023-0330
2023-03-06 23:15:11
CVE-2023-3180
2023-08-03 15:15:29
redhatcve
redhatcve
CVE-2023-3301
2023-08-01 13:19:43
CVE-2023-0330
2023-01-16 22:04:58
CVE-2023-3180
2023-08-03 07:48:53
prion
prion
Stack overflow
2023-03-06 23:15:00
Sql injection
2023-09-13 17:15:00
Heap overflow
2023-08-03 15:15:00
cbl_mariner
cbl_mariner
CVE-2023-3301 affecting package qemu for versions less than 8.2.0-1
2024-03-19 17:21:46
CVE-2023-3180 affecting package qemu for versions less than 8.2.0-1
2024-03-19 17:21:46
veracode
veracode
Denial Of Service (DoS)
2023-08-05 03:34:22
Out-of-bounds Write
2023-06-06 11:25:43
Out-of-bounds Write
2023-08-13 13:35:26
debiancve
debiancve
CVE-2023-3301
2023-09-13 17:15:10
CVE-2023-0330
2023-03-06 23:15:11
CVE-2023-3180
2023-08-03 15:15:29
ubuntucve
ubuntucve
CVE-2023-3301
2023-09-13 00:00:00
CVE-2023-0330
2023-03-06 00:00:00
CVE-2023-3180
2023-08-03 00:00:00
redos
redos
ROS-20240329-15
2024-03-29 00:00:00
alpinelinux
alpinelinux
CVE-2023-0330
2023-03-06 23:15:11
CVE-2023-3180
2023-08-03 15:15:29
amazon
amazon
Medium: qemu
2023-08-03 18:10:00
Medium: qemu
2023-08-17 11:58:00
Medium: qemu
2023-07-17 17:40:00
almalinux
almalinux
Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2023-11-14 00:00:00
redhat
redhat
(RHSA-2023:6980) Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2023-11-14 08:42:05
rosalinux
rosalinux
Advisory ROSA-SA-2023-2302
2023-12-05 10:39:31
ubuntu
ubuntu
QEMU vulnerabilities
2023-06-19 00:00:00
QEMU vulnerabilities
2024-01-08 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: qemu-7.2.5-1.fc38
2023-08-29 01:35:27
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

1.7 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:S/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for ELSA-2023-12835
oraclelinux4nessus45openvas31debian1osv7cve3redhatcve3prion3cbl_mariner2veracode3debiancve3ubuntucve3redos1alpinelinux2amazon3almalinux1redhat1rosalinux1ubuntu2fedora1ics1