Lucene search
K

18 matches found

Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.8 views

PT-2025-49466

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the serial AMBA-PL011 driver related to SBSA UART access to the DMACR register. The issue arises because the code shares the same stop rx operatio...

7.8CVSS7.3AI score0.00462EPSS
Exploits2References900
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986766)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986766 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ bas...

5.5CVSS5.7AI score0.00245EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/02/26 2:23 a.m.8 views

CVE-2022-49569

In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ based transfer times out the bcm2835spihandleerr function is called. Since commit 1513ceee70f2 "spi: bcm2835: Drop dmapending flag" the...

5.5CVSS5.5AI score0.00245EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.4 views

QEMU before 8.2.0 has an integer underflow and resultant buffer overflow via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len.

...

8.8CVSS7.2AI score0.01397EPSS
Exploits1
OSV
OSV
added 2024/04/12 11:7 a.m.3 views

OESA-2024-1421 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. Th...

8.8CVSS7.1AI score0.01397EPSS
Exploits1References2
Veracode
Veracode
added 2024/02/26 2:34 p.m.30 views

Buffer Overflow

QEMU is vulnerable to Buffer Overflow. The vulnerability is due to an integer underflow, resulting in a buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in espdonodma in hw/scsi/esp.c because of an underflow...

8.8CVSS6.8AI score0.01397EPSS
Exploits1References5Affected Software1
SUSE CVE
SUSE CVE
added 2024/02/22 3:5 a.m.2 views

SUSE CVE-2024-24474

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in espdonodma in hw/scsi/esp.c because of an underflow of asynclen...

8.2CVSS7.2AI score0.01397EPSS
Exploits1References5
NVD
NVD
added 2024/02/20 6:15 p.m.25 views

CVE-2024-24474

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in espdonodma in hw/scsi/esp.c because of an underflow of asynclen...

8.8CVSS6.9AI score0.01397EPSS
Exploits1References4
OSV
OSV
added 2024/02/20 6:15 p.m.2 views

UBUNTU-CVE-2024-24474

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in espdonodma in hw/scsi/esp.c because of an underflow of asynclen...

8.8CVSS6.9AI score0.01397EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2024/02/20 6:15 p.m.28 views

CVE-2024-24474

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in espdonodma in hw/scsi/esp.c because of an underflow of asynclen...

8.8CVSS6.9AI score0.01397EPSS
Exploits1References3
OSV
OSV
added 2024/02/20 12:0 a.m.29 views

CVE-2024-24474

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in espdonodma in hw/scsi/esp.c because of an underflow of asynclen...

8.8CVSS6.5AI score0.01397EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2024/02/20 12:0 a.m.32 views

CVE-2024-24474

QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in espdonodma in hw/scsi/esp.c because of an underflow of asynclen...

8.8CVSS6.5AI score0.01397EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 5:1 a.m.5 views

SUSE CVE-2016-5238

The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...

4.4CVSS7.1AI score0.00421EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2016/07/14 12:0 a.m.39 views

Fedora 24 : xen (2016-389be30b95)

fix for CVE-2016-2858 doesn't build with qemu-xen enabled Unsanitised guest input in libxl device handling code XSA-175, CVE-2016-4962 1342132 Unsanitised driver domain input in libxl device handling XSA-178, CVE-2016-4963 1342131 arm: Host crash caused by VMID exhaust XSA-181 1342530 Qemu:...

6.8CVSS6.4AI score0.00422EPSS
Exploits0References8
NVD
NVD
added 2016/06/14 2:59 p.m.19 views

CVE-2016-5238

The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...

4.4CVSS5.5AI score0.00421EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2016/06/14 2:0 p.m.44 views

CVE-2016-5238

The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...

4.4CVSS6.4AI score0.00421EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2016/06/14 12:0 a.m.29 views

CVE-2016-5238

The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...

4.4CVSS6.8AI score0.00421EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2016/06/02 6:48 p.m.29 views

CVE-2016-5238

The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...

4.4CVSS3.6AI score0.00421EPSS
Exploits0References1
Rows per page
Query Builder