121 matches found
Astra Linux – Vulnerability in Qemu
A race condition flaw was discovered in the 9pfs server implementation of QEMU, up to and including version 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges on the system. The greatest threat posed by this vulnerability is to...
Astra Linux – Vulnerability in Qemu
In QEMU 5.0.0, the hw/usb/hcd-ohci.c file contains an infinite loop when a TD list has a loop...
Astra Linux – Vulnerability in Qemu
An infinite loop flaw was discovered in the e1000 NIC emulator of QEMU. This issue occurs when processing transmit tx descriptors in processtxdesc, especially if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host, resulting in...
CVE-2026-23226 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-aws, linux-gcp...
GHSA-692F-C3G3-7699 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-aws, linux-gcp...
CVE-2025-8860 Qemu-kvm: uefi-vars: information disclosure vulnerability in uefi_vars_write callback
A flaw was found in QEMU in the uefi-vars virtual device. When the guest writes to register UEFIVARSREGBUFFERSIZE, the .write callback uefivarswrite is invoked. The function allocates a heap buffer without zeroing the memory, leaving the buffer filled with residual data from prior allocations. Wh...
QEMU 安全漏洞
QEMU Quick Emulator is a simulation software for processors developed by Fabrice Bellard from France. This software features high speed and cross-platform capabilities. QEMU has a security vulnerability, which stems from a minor error in the KVM Xen client support. This error may lead to...
MiracleLinux 9 : qemu-kvm-6.2.0-11.el9.3 (AXSA:2022-4021:02)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-4021:02 advisory. QEMU: virtio-net: map leaking on error during receive CVE-2022-26353 QEMU: vhost-vsock: missing virtqueue detach on error can lead to memory leak...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001017)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001017 advisory. arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the...
CVE-2025-40265
No description is available for this CVE...
UBUNTU-CVE-2025-40265
In the Linux kernel, the following vulnerability has been resolved: vfat: fix missing sbminblocksize return value checks When emulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, but without format, a kernel panic was triggered during the early boot stag...
EUVD-2020-3173
Malware in sbrugna...
EUVD-2015-8229
Malware in sbrugna...
EUVD-2018-2908
Malware in sbrugna...
EUVD-2020-6533
Malware in sbrugna...
EUVD-2021-7662
Malicious code in bioql PyPI...
EUVD-2021-7693
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-20203
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow issue was found in the vmxnet3 NIC emulator of the QEMU for versions up to v5.2.0. It may occur if a guest was to supply invalid values for...
Qemu: sdhci: heap buffer overflow in sdhci_write_dataport()
...
Linux Distros Unpatched Vulnerability : CVE-2021-20196
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected...