29 matches found
Azure Linux 3.0 Security Update: qemu (CVE-2024-26327)
The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26327 advisory. - An issue was discovered in QEMU 7.1.0 through 8.2.1. registervfs in hw/pci/pciesriov.c mishandles the situatio...
EUVD-2025-22565
Malicious code in bioql PyPI...
EUVD-2025-22566
Malicious code in bioql PyPI...
CVE-2025-54567
hw/pci/pciesriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327...
CVE-2025-54566
hw/pci/pciesriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327...
UBUNTU-CVE-2025-54567
hw/pci/pciesriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327...
CVE-2025-54567
hw/pci/pciesriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327...
CVE-2025-54566
hw/pci/pciesriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327...
CVE-2025-54566
hw/pci/pciesriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327...
CVE-2025-54566
Astra Linux advisory describes a QEMU vulnerability affecting versions 7.1.0 through 8.2.1 where register_vfs mishandles the NumVFs vs TotalVFs, causing a buffer overflow in VF implementations. This is related to CVE-2024-26327. The connected document provides the concrete root cause and affected...
CVE-2025-54566
hw/pci/pciesriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327...
CVE-2025-54566
hw/pci/pciesriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327...
PT-2025-30722
Name of the Vulnerable Software and Affected Versions: QEMU versions through 10.0.3 Description: A flaw exists in hw/pci/pcie sriov.c in QEMU related to the handling of the VF Enable bit write mask. This issue is connected to CVE-2024-26327. Additionally, the update removes the C Credential flag...
PT-2025-30721
Name of the Vulnerable Software and Affected Versions: QEMU versions through 10.0.3 QEMU version 7.2+dfsg-7+deb12u15 QEMU version 10.0.2+ds-2+deb13u1 Description: QEMU contains a migration state inconsistency related to SR-IOV. Additionally, the update removes the usage of the C Credential flag f...
CVE-2024-26327 affecting package qemu for versions less than 8.2.0-16
CVE-2024-26327 affecting package qemu for versions less than 8.2.0-16. A patched version of the package is available...
Mageia: Security Advisory (MGASA-2024-0387)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Moderate: qemu-kvm security update
Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: QEMU: SR-IOV: improper validation of NumVFs leads to buffer overflow...
Oracle Linux 8 : virt:kvm_utils1 (ELSA-2024-12791)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12791 advisory. - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 - Fix for CVE-2019-9755 heap-based buffer overflow leads to local root...
Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12792)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12792 advisory. - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52728 - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves:...
qemu-kvm security update
7.2.0-15.el9 - migration: abort on destination if switchover limit exceeded Elena Ufimtseva - migration: introduce strict switchover SLA Elena Ufimtseva - migration: add error to MigrationIncomingState Elena Ufimtseva - migration: Set migration status early in incoming side Fabiano Rosas -...