Lucene search
K

35 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-4206

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the allocation of a small cursor objec...

8.2CVSS7.2AI score0.00834EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.6 views

Azure Linux 3.0 Security Update: qemu / qemu-kvm (CVE-2021-4206)

The version of qemu / qemu-kvm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-4206 advisory. - A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc...

8.2CVSS7.2AI score0.00834EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/09/09 12:0 a.m.33 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-20230302.100173)

The version of AHV installed on the remote host is prior to 20230302.102005. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-20230302.100173 advisory. - A crafted NTFS image can trigger a heap-based buffer overflow, caused by an unsanitized attribute in...

8.8CVSS7.3AI score0.93305EPSS
Exploits51References60
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.17 views

CBL Mariner 2.0 Security Update: qemu / qemu-kvm (CVE-2021-4206)

The version of qemu / qemu-kvm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-4206 advisory. - A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc...

8.2CVSS7.2AI score0.00834EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/06/07 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2023-2082)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.02701EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2023/06/05 12:0 a.m.41 views

SUSE: Security Advisory (SUSE-SU-2023:2358-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.9AI score0.00834EPSS
Exploits5References10
RedhatCVE
RedhatCVE
added 2023/05/18 3:57 p.m.41 views

CVE-2023-1601

CVE-2023-1601 was originally allocated because of an incomplete fix for CVE-2021-4206. The CVE was subsequently rejected as the flaw was not confirmed...

8.2CVSS8AI score0.00834EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2023:0761-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.00834EPSS
Exploits8References16
OpenVAS
OpenVAS
added 2022/12/28 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-2880)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS8.2AI score0.02701EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/12/27 12:0 a.m.46 views

EulerOS Virtualization 2.10.1 : qemu (EulerOS-SA-2022-2898)

According to the versions of the qemu packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the...

8.2CVSS7.5AI score0.02701EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/12/27 12:0 a.m.44 views

EulerOS Virtualization 2.10.0 : qemu (EulerOS-SA-2022-2880)

According to the versions of the qemu packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the...

8.2CVSS7.5AI score0.02701EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2022/10/17 12:0 a.m.39 views

SUSE: Security Advisory (SUSE-SU-2022:3594-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.00834EPSS
Exploits5References9
Tenable Nessus
Tenable Nessus
added 2022/10/14 12:0 a.m.72 views

Oracle Linux 8 : kvm_utils2 (ELSA-2022-9862)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9862 advisory. - A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU. The flaw occurs while processing repeated message...

8.2CVSS7.4AI score0.02701EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2022/10/11 12:0 a.m.48 views

Oracle Linux 9 : qemu-kvm (ELSA-2022-9869)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9869 advisory. - A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the allocation of a small...

8.2CVSS7.4AI score0.02701EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2022/08/06 12:0 a.m.47 views

AlmaLinux 8 : virt:rhel and virt-devel:rhel (5821) (ALSA-2022:5821)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:5821 advisory. QEMU: QXL: integer overflow in cursoralloc can lead to heap buffer overflow CVE-2021-4206 QEMU: QXL: double fetch in qxlcursor can lead to heap buffer...

8.2CVSS6.8AI score0.02701EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2022/08/05 12:0 a.m.71 views

Oracle Linux 8 : virt:ol / and / virt-devel:ol (ELSA-2022-5821)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-5821 advisory. libvirt 8.0.0-5.2.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 - Add runtime deps for pkg librbd1 = 1:10.2.5 Keshav Sharma 8.0.0-5.2.el8 -...

8.2CVSS6.6AI score0.02701EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2022/08/02 10:12 a.m.119 views

Moderate: Red Hat Security Advisory: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

An update for the virt:rhel and virt-devel:rhel modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.2CVSS6.9AI score0.02701EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2022/08/02 12:0 a.m.45 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2022:5821)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5821 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

8.2CVSS7AI score0.02701EPSS
Exploits2References15
Oracle linux
Oracle linux
added 2022/08/01 12:0 a.m.60 views

qemu security update

15:4.2.1-18.el7 - block: introduce maxhwiov for use in scsi-generic Paolo Bonzini Orabug: 33785156 - file-posix: try BLKSECTGET on block devices too, do not round to power of 2 Paolo Bonzini Orabug: 33785156 - block: add maxhwtransfer to BlockLimits Paolo Bonzini Orabug: 33785156 - block-backend:...

8.2CVSS0.00834EPSS
Exploits3
CBLMariner
CBLMariner
added 2022/07/14 9:0 p.m.19 views

CVE-2021-4206 affecting package qemu-kvm 4.2.0-39

CVE-2021-4206 affecting package qemu-kvm 4.2.0-39. A patched version of the package is available...

8.2CVSS7.5AI score0.00834EPSS
Exploits1
Rows per page
Query Builder