EulerOS Virtualization 2.11.1 : qemu (EulerOS-SA-2023-2082)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Bloc...

EulerOS Virtualization 2.11.0 : qemu (EulerOS-SA-2023-2134)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Bloc...

PT-2023-20860 · Xpdf · Xpdf

Name of the Vulnerable Software and Affected Versions: XPDF version 4.04 Description: A Buffer Overflow issue has been found, allowing an attacker to cause a Denial of Service. The issue is related to the SharedFile::readBlock function located in goo/gfile.cc. Recommendations: For XPDF version...

CVE-2023-25597

A vulnerability in the web conferencing component of Mitel MiCollab through 9.6.2.9 could allow an unauthenticated attacker to download a shared file via a crafted request - including the exact path and filename - due to improper authentication control. A successful exploit could allow access to...

CVE-2023-25597

A vulnerability in the web conferencing component of Mitel MiCollab through 9.6.2.9 could allow an unauthenticated attacker to download a shared file via a crafted request - including the exact path and filename - due to improper authentication control. A successful exploit could allow access to...

Authentication flaw

A vulnerability in the web conferencing component of Mitel MiCollab through 9.6.2.9 could allow an unauthenticated attacker to download a shared file via a crafted request - including the exact path and filename - due to improper authentication control. A successful exploit could allow access to...

PT-2023-20188 · Mitel · Mitel Micollab

Name of the Vulnerable Software and Affected Versions: Mitel MiCollab versions through 9.6.2.9 Description: A vulnerability in the web conferencing component could allow an unauthenticated attacker to download a shared file via a crafted request, including the exact path and filename, due to...

SUSE CVE-2014-9018

Icecast before 2.4.1 transmits the output of the on-connect script, which might allow remote attackers to obtain sensitive information, related to shared file descriptors...

FreeBSD : shells/fish -- arbitrary code execution via git (a3b10c9b-99d9-11ed-aa55-d05099fed512)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a3b10c9b-99d9-11ed-aa55-d05099fed512 advisory. - fish is a command line shell. fish version 3.1.0 through version 3.3.1 is vulnerable to arbitrary cod...

Design/Logic Flaw

A flaw was found in the QEMU virtio-fs shared file system daemon virtiofsd implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certa...

CVE-2022-0358

CVE-2022-0358 pertains to the QEMU virtio-fs daemon (virtiofsd) and describes a local-privilege issue tied to an existing CVE-2018-13405 scenario. A local guest user can create files in directories shared by virtio-fs that are SGID-writable and belong to a specific group, causing files to acquire...

CVE-2022-0358

A flaw was found in the QEMU virtio-fs shared file system daemon virtiofsd implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certa...

USN-5489-1: QEMU vulnerabilities

Alexander Bulekov discovered that QEMU incorrectly handled floppy disk emulation. A privileged attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly leak sensitive information. CVE-2021-3507 It was discovered that QEMU incorrectly...

CVE-2022-20001

fish is a command line shell. fish version 3.1.0 through version 3.3.1 is vulnerable to arbitrary code execution. git repositories can contain per-repository configuration that change the behavior of git, including running arbitrary commands. When using the default configuration of fish, changing...

CVE-2022-0358

A flaw was found in the QEMU virtio-fs shared file system daemon virtiofsd implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certa...

QEMU Elevation of Privilege Vulnerability (CNVD-2022-84163)

QEMU is a suite of emulation processor software from Fabrice Bellard, a French personal developer. The software is fast and cross-platform.QEMU suffers from an elevation of privilege vulnerability, which stems from a flaw found in the QEMU virtio-fs shared file system daemon implementation. An...

shells/fish -- arbitrary code execution via git

Peter Ammon reports: fish is a command line shell. fish version 3.1.0 through version 3.3.1 is vulnerable to arbitrary code execution. git repositories can contain per-repository configuration that change the behavior of git, including running arbitrary commands. When using the default...

Privilege Escalation

qemu is vulnerable to privilege escalation. The vulnerability exists through the virtio-fs shared file system daemon virtiofsd of QEMU where the new xattrmap option may cause the security.capability xattr in the guest to not drop on file write...

CVE-2021-20263

CVE-2021-20263 concerns the virtio-fs daemon (virtiofsd) in QEMU. The issue arises from the new xattrmap option, which may prevent the guest’s security.capability xattr from dropping on file writes, potentially allowing a malicious guest user to modify a privileged executable inside the guest. Th...

CVE-2020-35517

A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices...