EUVD-2016-10719

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2019-18425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. There is missin...

USN-7144-1 linux-intel-iotg, linux-intel-iotg-5.15 vulnerabilities

Supraja Sridhara, Benedict Schlüter, Mark Kuhne, Andrin Bertschi, and Shweta Shinde discovered that the Confidential Computing framework in the Linux kernel for x86 platforms did not properly handle 32-bit emulation on TDX and SEV. An attacker with access to the VMM could use this to cause a deni...

An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). A malicious guest could use this flaw to potentially crash QEMU resulting in a denial of service condition.

...

QEMU code issue vulnerability (CNVD-2021-41093)

QEMU Quick Emulator is a set of simulation processor software by French software developer Fabrice Bellard. The software is fast, cross-platform and other characteristics. A code issue vulnerability exists in QEMU versions prior to 6.0.0 for SCSI Emulation Support. An attacker could exploit this...

QEMU: pcnet: integer overflow leads to buffer overflow

An integer overflow issue was found in the AMD PC-Net II NIC emulation in QEMU. It could occur while receiving packets, if the size value was greater than INTMAX. Such overflow would lead to stack buffer overflow issue. A user inside guest could use this flaw to crash the QEMU process resulting i...

QEMU Denial of Service Vulnerability (CNVD-2018-26705)

QEMU aka Quick Emulator is a set of simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. A denial of service vulnerability exists in the LSI53C895A SCSI Host Bus Adapter emulation in QEMU. An attacker could exploit this vulnerabili...

Linux kernel denial of service vulnerability (CNVD-2017-00769)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial-of-service vulnerability exists in Linux arch/x86/kvm/emulate.c prior to version 4.9.3, which allows local users to obtain sensitive information from the kernel or...

QEMU Denial of Service Vulnerability (CNVD-2015-02254)

QEMU is an open source emulator software. QEMU suffers from a denial of service vulnerability that allows a local HVM user to cause a denial of service by disabling memory or I/O PCI Express for decoding devices, and accessing the device to trigger a response to an unsupported request...

CVE-2013-4361

The fbld instruction emulation in Xen 3.3.x through 4.3.x does not use the correct variable for the source effective address, which allows local HVM guests to obtain hypervisor stack information by reading the values used by the instruction...

RHEL 6 : qemu-kvm (RHSA-2012:1234)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2012:1234 advisory. - qemu: VT100 emulation vulnerability CVE-2012-3515 Note that Nessus has not tested for this issue but has instead relied only on the application's...

Design/Logic Flaw

Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a "device model's address space."...

SuSE 10 Security Update : Xen (ZYPP Patch Number 8268)

XEN was updated to fix multiple bugs and security issues. The following security issues have been fixed : - xen: hypercall setdebugreg vulnerability XSA-12. CVE-2012-3494 - xen: Qemu VT100 emulation vulnerability XSA-17. CVE-2012-3515 - xen: pv bootloader doesn't check the size of the bzip2 or lz...