2 matches found
SUSE CVE-2019-12247
QEMU 3.0.0 has an Integer Overflow because the qga/commands.c files do not check the length of the argument list or the number of environment variables. NOTE: This has been disputed as not exploitable...
QEMU integer overflow vulnerability (CNVD-2019-15553)
QEMU is a set of simulation processors written by Fabrice Bellard and distributed with source code under the GPL license, widely used on the GNU/Linux platform. An integer overflow vulnerability exists in QEMU 3.0.0. The vulnerability stems from the qga/commands.c file not checking the length of...