126 matches found
Oracle Linux 9 : qemu-kvm (ELSA-2026-50241)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50241 advisory. - Document CVEs Mark Kanda CVE-2025-54566 CVE-2025-54567 CVE-2025-8860 CVE-2026-0665 CVE-2026-3886 - hw/usb/hcd-ohci: check for MPS=0 to avoid infinit...
OPENSUSE-SU-2026:20357-1 Security update for qemu
This update for qemu fixes the following issues: - Update to version 10.0.8 - CVE-2025-14876: Fixed unbounded allocation in virtio-crypto. bsc1255400 - CVE-2026-0665: Fixed PIRQ bounds check in xenphysdevmappirq. bsc1256484...
TencentOS Server 4: qemu (TSSA-2026:0097)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0097 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
DEBIAN-CVE-2026-0665
An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process via the emulated Xen physdev hypercall interface, leading to a denial of service or potential memory corruption...
CVE-2026-0665
CVE-2026-0665 affects QEMU with the Xen guest support, enabling an attacker in the guest to trigger out-of-bounds heap access through xen_physdev_map_pirq, potentially causing denial of service or memory corruption. The connected advisories confirm a fix in QEMU (update to version 10.0.8) across ...
SUSE-SU-2026:0445-1 Security update for qemu
This update for qemu fixes the following issues: - CVE-2026-0665: Added PIRQ bounds check in xenphysdevmappirq to avoid an out-of-bounds heap. bsc1256484 Other fixes: - Fixed that QEMU migration fails if a qemu-vdagent channel is present in the VM bsc1257474...
CVE-2026-0665
creationtimestamp| type| source ---|---|--- 2026-02-06 14:39:05+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116024196776648851...
qemu-10.2.0-2.1 on GA media (moderate)
qemu-10.2.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10097-1 Rating: moderate Cross-References: CVE-2026-0665 CVSS scores: CVE-2026-0665 SUSE : 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H CVE-2026-0665 SUSE : 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N Affect...
SUSE CVE-2026-0665
An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process via the emulated Xen physdev hypercall interface, leading to a denial of service or potential memory corruption...
Linux Distros Unpatched Vulnerability : CVE-2026-0665
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process...
EUVD-2026-0665
A path traversal vulnerability has been reported to affect several product versions. If a local attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following versions: Qfinde...
Siemens SIMATIC and SCALANCE Multiple Releases of Same Resource or Handle (CVE-2025-0665)
libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...
Photon OS 5.0: Libtiff PHSA-2025-5.0-0665
An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0665. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
SUSE: Security Advisory (SUSE-SU-2025:03198-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for curl
This update for curl fixes the following issues: Update to version 8.14.1 jscPED-13055, jscPED-13056. Security issues fixed: CVE-2025-0665: eventfd double close can cause libcurl to act unreliably bsc1236589. CVE-2025-4947: QUIC certificate check is skipped with wolfSSL allows for MITM attacks...
Linux Distros Unpatched Vulnerability : CVE-2017-0665
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A elevation of privilege vulnerability in the Android framework. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID:...
Azure Linux 3.0 Security Update: curl / mysql (CVE-2025-0665)
The version of curl / mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-0665 advisory. - libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channe...
CBL Mariner 2.0 Security Update: curl / mysql (CVE-2025-0665)
The version of curl / mysql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-0665 advisory. - libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channe...
CVE-2022-0665
Path Traversal in GitHub repository pimcore/pimcore prior to 10.3.2...
CVE-2013-0665
Schweitzer Engineering Laboratories SEL AcSELerator QuickSet before 5.12.0.1 uses weak permissions for its Program Files directory, which allows local users to replace executable files, and consequently gain privileges, via standard filesystem operations...