Advisory ROSA-SA-2026-3227

software: qemu 7.2.22 OS: ROSA-CHROME unaffected versions = qemu-7.2.22-1 affected versions qemu-7.2.22-1 CVE-ID: CVE-2023-3019 BDU-ID: 2024-04883 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the e1000e component of the QEMU server is related to DMA re-entry. Exploitation of the vulnerability...

ROS-20251106-09

A vulnerability in the QEMU hardware emulator is related to the incorrect release and use of the irqfd for vector 0 during boot time in QEMU Virtio PCI Bindings hw/virtio/virtio/pci.c. Exploitation of the of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251105-12

A vulnerability in the usbepget function hw/net/core.c of the QEMU hardware emulator is related to a a flaw in the use of the assert function. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20241008-04

A vulnerability in the RSS function of the QEMU hardware emulator is related to setting too large a value, causing an index out-of-bounds problem. values, causing a problem with the index going out of bounds. Exploitation of the vulnerability could allow an attacker acting locally to cause a deni...

ROS-20241001-12

QEMU hardware emulator vulnerability is related to synchronization errors. Exploitation The vulnerability could allow an attacker acting remotely to cause a denial of service...

ROS-20240917-03

A vulnerability in the QEMU hardware emulator info command is related to uncontrolled consumption of resources. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise their integrity, and cause a denial of service by using a specially crafted file...

ROS-20240627-03

A vulnerability in the QEMU hardware emulator is related to a memory re-release error. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by performing a DMA re-entry...

ROS-20240627-05

A vulnerability in the updatesctpchecksum function of the QEMU hardware emulator is related to a reachability assertion when attempting to calculate the checksum of a fragmented packet of small size. of reachability when attempting to compute the checksum of a fragmented small packet. Exploitatio...

ROS-20240625-04

A vulnerability in the e1000e component of the QEMU server is related to DMA re-entry. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the registervfs function hw/pci/pciesriov.c of the QEMU hardware emulator is related to a buffer overflo...

ROS-20240611-14

The QEMU hardware emulator vulnerability is related to an infinite loop error in QEMU emulation of a USB xHCI controller when calculating the length of the transfer request block TRB ring. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in th...

ROS-20240401-01

Vulnerability of idedmacb function of QEMU hardware emulator is related to synchronization errors when processing the DRQSTAT parameter. Exploitation of the vulnerability could allow an attacker to gain access to read, modify, or delete data or cause a denial of service Vulnerability in the...

ROS-20240329-15

A vulnerability in the lsi53c895a.c component of the QEMU hardware emulator is related to writing outside the boundaries of the buffer. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the scsidiskreset function hw/scsi/scsi-disk.c of the...

The vulnerability of the lsi53c895a.c component of the hardware emulation software QEMU, which allows a hacker to trigger a service failure.

The vulnerability of the lsi53c895a.c component of the QEMU hardware emulator is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the fdctrl_transfer_handler() function in the hw/block/fdc.c component of the QEMU hardware emulation software allows a attacker to access confidential data and also trigger a service failure.

The vulnerability of the fdctrltransferhandler function in the hw/block/fdc.c component of the QEMU hardware emulation software is related to the issue of operations going beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to access confidential data and...

ROS-20220125-17

A vulnerability in the QEMU hardware emulator is related to a single offset error when emulating a SCSI device in QEMU. Exploitation of the vulnerability could allow an attacker acting remotely, cause QEMU to crash The QEMU hardware emulator vulnerability is related to a memory usage error after ...

The vulnerability of several functions in hw/usb/core.c of the QEMU hardware emulation software involves allowing operations to exceed the permissible buffer data size. This allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of several functions in the hw/usb/core.c file of the QEMU hardware emulation software is related to the execution of operations that exceed the permissible buffer data size. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrit...

Exploit for CVE-2016-2384

This repository contains proof-of-concept exploits for two Linux kernel vulnerabilities: CVE-2016-2384 and CVE-2017-6074. CVE-2016-2384 is a double-free vulnerability in the USB MIDI driver. The exploit is a part of a proof-of-concept exploit for the vulnerability in the usb-midi driver. It is...

PT-2020-6478

Name of the Vulnerable Software and Affected Versions QEMU version 4.2.1 Description The issue is related to the eth get gso type function in the net/eth.c component of the QEMU hardware emulator, which is associated with incorrect accounting of external emulator resources. This can be exploited ...

The vulnerability of the pvrdma_realize function in the PVRDMA virtual network adapter allows a hacker to induce a service failure.

The vulnerability of the pvrdmarealize function in the PVRDMA virtual network adapter emulator for hardware emulation software QEMU is related to deficiencies in resource release after the expiration of its useful lifespan. Exploiting this vulnerability can allow an attacker to cause a service...

The vulnerability of the ROUND_UP(n, d) component of the QEMU hardware emulator allows a hacker to trigger a service failure.

The vulnerability of the ROUNDUPn, d component of the QEMU hardware emulator is caused by integer overflow. Exploiting this vulnerability can allow an attacker to cause a system failure...