Lucene search
GoogleOSV:CVE-2024-24474HistoryFeb 20, 2024 - 6:15 p.m.
CVE-2024-24474
2024-02-2018:15:52
Google
osv.dev
6
qemu
integer underflow
buffer overflow
ti command
non-dma transfer
fifo data
esp module
scsi
vulnerability
QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len.
Related
redos
redos
ROS-20240423-09
2024-04-23 00:00:00
debiancve
debiancve
CVE-2024-24474
2024-02-20 18:15:52
cve
cve
CVE-2024-24474
2024-02-20 18:15:52
prion
prion
Integer overflow
2024-02-20 18:15:00
ubuntucve
ubuntucve
CVE-2024-24474
2024-02-20 00:00:00
veracode
veracode
Buffer Overflow
2024-02-26 14:34:24
cvelist
cvelist
CVE-2024-24474
2024-02-20 00:00:00
redhatcve
redhatcve
CVE-2024-24474
2024-02-22 12:32:16
nessus
nessus
SUSE SLES15 Security Update : qemu (SUSE-SU-2024:1394-1)
2024-04-24 00:00:00
Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12276)
2024-04-10 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:1394-1)
2024-05-07 00:00:00
openSUSE: Security Advisory for qemu (SUSE-SU-2024:1103-1)
2024-04-09 00:00:00
openSUSE: Security Advisory for qemu (SUSE-SU-2024:1394-1)
2024-04-25 00:00:00
oraclelinux
oraclelinux
virt:kvm_utils3 security update
2024-04-10 00:00:00