EUVD-2008-4894

Malware in sbrugna...

EUVD-2014-8431

Malware in sbrugna...

EUVD-2022-39351

Malicious code in bioql PyPI...

[SECURITY] Fedora 43 Update: qemu-10.1.0-6.fc43

qemu is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu acts as a virtual machine monitor together with the KVM kernel modules, and emulates the hardware for a full system such as a PC and its associated peripherals...

The vulnerability of the virtio-scsi, virtio-blk, and virtio-crypt components of the QEMU hardware emulation driver’s virtqueue_push() function allows a attacker to disclose sensitive information.

The vulnerability of the virtio-scsi, virtio-blk, and virtio-crypt components of the QEMU hardware emulation driver’s virtqueuepush function is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to disclose protected information through the...

Linux Distros Unpatched Vulnerability : CVE-2022-36648

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu an...

Azure Linux 3.0 Security Update: qemu (CVE-2022-36648)

The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-36648 advisory. - The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier,...

Vulnerability of the usb_ep_get() function (hw/net/core.c) in the QEMU hardware emulation software, allowing a hacker to cause a service failure

The vulnerability of the usbepget function hw/net/core.c in the QEMU hardware emulation software is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a attacker to cause a system failure...

The vulnerability of the QEMU hardware emulation software, related to synchronization errors, allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the QEMU hardware emulation software is related to synchronization errors. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures...

The vulnerabilities of the functions read_erst_record() and write_erst_record() in the QEMU hardware emulation software allow a malicious actor to induce a service failure.

The vulnerability of the readerstrecord and writeerstrecord functions in the QEMU hardware emulation software involves copying buffers without checking the input data. Exploiting this vulnerability allows an attacker to cause a service failure...

CBL Mariner 2.0 Security Update: qemu (CVE-2022-36648)

The version of qemu installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-36648 advisory. - The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier,...

The vulnerability of the virtio-net interface in the QEMU hardware emulation software allows a attacker to trigger a service failure.

The vulnerability of the virtio-net emulator’s hardware emulation interface of QEMU is related to the asynchronous nature of the shutdown process, which allows for scenarios of “racing.” Exploiting this vulnerability can enable a perpetrator to cause a service failure...

The vulnerability of the ClientCutText component of the hardware emulation software QEMU allows a hacker to trigger a service failure.

The vulnerability of the ClientCutText component of the QEMU hardware emulator is related to overflow during message processing. Exploiting this vulnerability can allow a malicious actor to cause service failures...

[SECURITY] Fedora 39 Update: qemu-8.1.3-3.fc39

qemu is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu acts as a virtual machine monitor together with the KVM kernel modules, and emulates the hardware for a full system such as a PC and its associated peripherals...

Fedora: Security Advisory (FEDORA-2024-c601293124)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the virtio_crypto_handle_sym_req function in the QEMU hardware emulation software allows a attacker to trigger a service failure.

The vulnerability of the virtiocryptohandlesymreq function in the QEMU hardware emulation software is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

Fedora: Security Advisory for qemu (FEDORA-2023-68df3f4b02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 38 Update: qemu-7.2.5-1.fc38

qemu is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu acts as a virtual machine monitor together with the KVM kernel modules, and emulates the hardware for a full system such as a PC and its associated peripherals...

The vulnerability of the _dpa_cmd_add_l2_floo module in the QEMU hardware emulation software allows a hacker to trigger a service failure and execute arbitrary code.

The vulnerability of the dpacmdaddl2floo module in the QEMU hardware emulation software is related to pointer swapping errors. Exploiting this vulnerability can allow a remote attacker to cause service failures and execute arbitrary code...

CVE-2022-36648

The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu and potentially execute code on the host via execute a malformed program in the guest OS. Note: This has been disputed by multiple third...