CVE-2024-26328

An issue was discovered in QEMU 7.1.0 through 8.2.1. registervfs in hw/pci/pciesriov.c does not set NumVFs to PCISRIOVTOTALVF, and thus interaction with hw/nvme/ctrl.c is mishandled...

QEMU Denial of Service Vulnerability (CNVD-2023-62348)

QEMU is a suite of simulation processor software. The software is fast and cross-platform. QEMU suffers from a denial-of-service vulnerability, which stems from the guest driver allocating and initializing a large number of page tables to be used as descriptor rings for CQs and asynchronous event...

SUSE CVE-2021-4145

A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to 6.2.0. The self pointer is dereferenced in mirrorwaitonconflicts without ensuring that it's not NULL. A malicious unprivileged user within the guest could use this flaw to crash the QEMU process on t...

DLA-2753-2 qemu - regression update

Bulletin has no description...

OPENSUSE-SU-2021:1942-1 Security update for qemu

This update for qemu fixes the following issues: - Switch method of splitting off hw-s390x-virtio-gpu-ccw.so as a module to what was accepted upstream bsc1181103 - Fix OOB access in sdhci interface CVE-2020-17380, bsc1175144, CVE-2020-25085, bsc1176681, CVE-2021-3409, bsc1182282 - Fix potential...

QEMU Access Control Error Vulnerability

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. QEMU suffers from an Access Control Error vulnerability that can be exploited by an attacker to bypass access restrictions via virtiofsd in ord...

QEMU Denial of Service Vulnerability (CNVD-2021-03259)

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. QEMU 4.1.0 suffers from a security vulnerability that stems from an out-of-bounds read flaw found in the ATI VGA implementation. It occurs in t...

QEMU Buffer Overflow Vulnerability (CNVD-2021-39774)

QEMU is a suite of analog processor software. QEMU suffers from a buffer overflow vulnerability. An attacker could exploit this vulnerability to cause a stack buffer over-read via a value obtained from a host controller driver...

QEMU code issue vulnerability (CNVD-2021-39773)

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. QEMU has a code issue vulnerability that can be exploited by an attacker to force an assertion error via QEMU's usb packet mapping to trigger a...

CVE-2020-25742

pcichangeirqlevel in hw/pci/pci.c in QEMU before 5.1.1 has a NULL pointer dereference because pcigetbus might not return a valid pointer...

DEBIAN-CVE-2020-25085

QEMU 5.0.0 has a heap-based Buffer Overflow in flatviewreadcontinue in exec.c because hw/sd/sdhci.c mishandles a write operation in the SDHCBLKSIZE case...

DSA-4760-1 qemu - security update

Bulletin has no description...

CVE-2019-15034

hw/display/bochs-display.c in QEMU 4.0.0 does not ensure a sufficient PCI config space allocation, leading to a buffer overflow involving the PCIe extended config space...

CVE-2018-20815

In QEMU 3.1.0, loaddevicetree in devicetree.c calls the deprecated loadimage function, which has a buffer overflow risk...

DLA-1694-1 qemu - security update

Bulletin has no description...

DLA-1497-1 qemu - security update

Bulletin has no description...

DEBIAN-CVE-2017-7471

Quick Emulator Qemu built with the VirtFS, host directory sharing via Plan 9 File System 9pfs support, is vulnerable to an improper access control issue. It could occur while accessing files on a shared host directory. A privileged user inside guest could use this flaw to access host file system...

Qemu: i386: multiboot OOB access while loading kernel image

Quick Emulator QEMU, compiled with the PC System Emulator with multiboot feature support, is vulnerable to an OOB r/w memory access issue. The issue could occur due to an integer overflow while loading a kernel image during a guest boot. A user or process could use this flaw to potentially achiev...

CVE-2014-0142

QEMU, possibly before 2.0.0, allows local users to cause a denial of service divide-by-zero error and crash via a zero value in the 1 tracks field to the seektosector function in block/parallels.c or 2 extentsize field in the bochs function in block/bochs.c...

The vulnerability of the QEMU hardware emulation software, which allows a hacker to trigger a service failure

The vulnerability of the !megasashandledcmd function in the hw/scsi/megasas.c file of the QEMU hardware emulation software is related to a memory leak. Exploiting this vulnerability could allow an attacker, operating locally, to trigger a service failure memory consumption through specially craft...