Lucene search
K

8 matches found

Microsoft CVE
Microsoft CVE
added 2024/08/05 7:0 a.m.3 views

A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursor_alloc() function can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. This flaw allows a malicious privileged guest user to crash the QEMU process on the host or potentially execute arbitrary code within the context of the QEMU process.

...

8.2CVSS7AI score0.00834EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 3:47 a.m.3 views

SUSE CVE-2021-4207

A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values cursor-header.width and cursor-header.height can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use...

7.5CVSS7.6AI score0.00399EPSS
Exploits1References9
SUSE CVE
SUSE CVE
added 2023/02/15 3:30 a.m.2 views

SUSE CVE-2022-4144

An out-of-bounds read flaw was found in the QXL display device emulation in QEMU. The qxlphys2virt function does not check the size of the structure pointed to by the guest physical address, potentially reading past the end of the bar space into adjacent pages. A malicious guest user could use th...

6.5CVSS6.6AI score0.00281EPSS
Exploits0References8
OSV
OSV
added 2022/04/29 5:15 p.m.6 views

AZL-35155 CVE-2021-4207 affecting package qemu for versions less than 6.2.0-18

A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values cursor-header.width and cursor-header.height can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use...

8.2CVSS7.4AI score0.00399EPSS
Exploits1References1
NVD
NVD
added 2022/04/29 5:15 p.m.18 views

CVE-2021-4207

A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values cursor-header.width and cursor-header.height can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use...

8.2CVSS0.00399EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2022/04/29 5:15 p.m.53 views

CVE-2021-4207

A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values cursor-header.width and cursor-header.height can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use...

8.2CVSS7.3AI score0.00399EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/04/01 10:34 a.m.35 views

CVE-2021-4206

A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. This flaw allows a malicious privileged guest user to crash the QEMU process on th...

8.2CVSS5.7AI score0.00834EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/04/01 10:34 a.m.33 views

CVE-2021-4207

A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values cursor-header.width and cursor-header.height can lead to the allocation of a small cursor object followed by a subsequent heap-based buffer overflow. A malicious privileged guest user could use...

8.2CVSS4.3AI score0.00399EPSS
Exploits1References4
Rows per page
Query Builder