Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2023/06/19 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-6167-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.00382EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/05/15 12:0 a.m.32 views

Oracle Linux 9 : qemu-kvm (ELSA-2023-2162)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-2162 advisory. - Resolves: bz2149108 CVE-2022-4172 qemu-kvm: QEMU: ACPI ERST: memory corruption issues in readerstrecord and writeerstrecord rhel-9 - Resolves:...

7.8CVSS7AI score0.0114EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2023/05/14 12:0 a.m.75 views

AlmaLinux 9 : qemu-kvm (ALSA-2023:2162)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:2162 advisory. - An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use...

6.5CVSS7.2AI score0.0114EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2023/05/09 10:9 a.m.123 views

Moderate: Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

6.5CVSS6.8AI score0.0114EPSS
Exploits1References65
OSV
OSV
added 2023/05/09 12:0 a.m.32 views

ALSA-2023:2162 Moderate: qemu-kvm security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. The following packages have been upgraded to a later upstream version: qemu-kvm 7.2.0...

6.5CVSS6.7AI score0.0114EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:30 a.m.4 views

SUSE CVE-2022-4172

An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table ERST device of QEMU in the readerstrecord and writeerstrecord functions. Both issues may allow the guest to overrun the host buffer allocated for the ERST memory device. A malicious guest could...

6CVSS8.1AI score0.00382EPSS
Exploits1References3
Oracle linux
Oracle linux
added 2023/02/08 12:0 a.m.92 views

virt:kvm_utils security update

libvirt 5.7.0-38.el8 - qemu: Don't report spurious errors from vCPU tid validation on hotunplug timeout Shaleen Bathla Orabug: 34826758 - security: fix SELinux label generation logic Daniel P. Berrange Orabug: 34773029 CVE-2021-3631 - qemu: Set default qdisc before setting bandwidth Michal...

8.8CVSS7.4AI score0.0114EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.126 views

Oracle Linux 8 : virt:kvm_utils (ELSA-2023-12108)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12108 advisory. - security: fix SELinux label generation logic Daniel P. Berrange Orabug: 34773029 CVE-2021-3631 - hw/display/ati2d: Fix buffer overflow in ati2dblt...

8.8CVSS7.3AI score0.0114EPSS
Exploits3References6
Oracle linux
Oracle linux
added 2023/01/23 12:0 a.m.47 views

qemu security update

15:4.2.1-24.el7 - Revert 'virtio-scsi: Send 'REPORTED LUNS CHANGED' sense data upon disk hotplug events' Mark Kanda Orabug: 34905939 15:4.2.1-23.el7 - hw/display/ati2d: Fix buffer overflow in ati2dblt CVE-2021-3638 Philippe Mathieu-Daude Orabug: 33930374 CVE-2021-3638 - tests/acpi: virt: update...

8.8CVSS7.3AI score0.0114EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2022/12/16 12:0 a.m.38 views

QEMU < 7.2.0 Overflow (CVE-2022-4172)

An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table ERST device of QEMU in the readerstrecord and writeerstrecord functions. Both issues may allow the guest to overrun the host buffer allocated for the ERST memory device. A malicious guest could...

6.5CVSS7AI score0.00382EPSS
Exploits1References2
Circl
Circl
added 2022/11/29 8:28 p.m.3 views

CVE-2022-4172

creationtimestamp| type| source ---|---|--- 2022-11-29 20:28:54+00:00| seen| https://t.me/cibsecurity/53660...

6.5CVSS6.6AI score0.00382EPSS
Exploits1References1
OSV
OSV
added 2022/11/29 6:15 p.m.2 views

BELL-CVE-2022-4172

Bulletin has no description...

6.5CVSS6.2AI score0.00382EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/11/29 12:0 a.m.3 views

CVE-2022-4172

An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization Table ERST device of QEMU in the readerstrecord and writeerstrecord functions. Both issues may allow the guest to overrun the host buffer allocated for the ERST memory device. A malicious guest could...

6.7AI score0.00382EPSS
Exploits1References5
CVE
CVE
added 2022/11/29 12:0 a.m.149 views

CVE-2022-4172

CVE-2022-4172 affects QEMU's ACPI ERST (Error Record Serialization Table) implementation. The read_erst_record() and write_erst_record() paths are vulnerable to integer overflow and buffer overflow, which may allow a malicious guest to overrun the host buffer allocated for the ERST memory device....

6.5CVSS6.7AI score0.00382EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder