426 matches found
Arbitrary Code Execution
qemu is vulnerable to arbitrary code execution. A buffer overflow in tcpsubr.c due to a misuse in the snprintf return values allow an attacker to execute arbitrary code...
CentOS 6 : qemu-kvm (RHSA-2020:1403)
The remote CentOS Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1403 advisory. - In libslirp 4.1.0, as used in QEMU 4.2.0, tcpsubr.c misuses snprintf return values, leading to a buffer overflow in later code. CVE-2020-8608 Note that Nessus...
Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20200407)
QEMU: Slirp: potential OOB access due to unsafe snprintf usages C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include"compat.inc"; if description scriptid135833; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate", value:"2020/09/29";...
qemu-kvm security update
1.5.3-173.el78.1 - kvm-util-add-slirpfmt-helpers.patch bz1798970 - kvm-tcpemu-fix-unsafe-snprintf-usages.patch bz1798970 - Resolves: bz1798970 CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf usages rhel-7.8.z...
Important: Red Hat Security Advisory: qemu-kvm security and bug fix update
An update for qemu-kvm is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...
QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...
QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...
Important: Red Hat Security Advisory: qemu-kvm security update
An update for qemu-kvm is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...
QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...
RHEL 7 : qemu-kvm-ma (RHSA-2020:1352)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1352 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide...
RHEL 7 : qemu-kvm-rhev (RHSA-2020:1300)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1300 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provi...
QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...
RHEL 7 : qemu-kvm (RHSA-2020:1208)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1208 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the...
QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...
QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...
CVE-2019-9824
tcpemu in slirp/tcpsubr.c aka slirp/src/tcpsubr.c in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure...
QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...
Exploit for Stack-based Buffer Overflow in Juniper Junos
inetutils hasn't been updated in 5 years, and neither has the of...
QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...