Lucene search
+L

242 matches found

OSV
OSV
added 2020/11/06 8:15 a.m.5 views

UBUNTU-CVE-2020-27616

ati2dblt in hw/display/ati2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation. A guest can crash the QEMU process...

6.5CVSS6.8AI score0.02498EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2020/11/03 12:1 p.m.45 views

CVE-2020-27616

An out-of-bounds access flaw was found in the ati-vga emulator of the QEMU. This flaw occurs when the source and destination x y display parameters in ati2dblt have invalid values. This flaw allows a guest user or process to crash the QEMU process, resulting in a denial of service...

6.5CVSS4.1AI score0.02498EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2020/11/02 8:0 a.m.8 views

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati_2d_blt() routine in hw/display/ati_2d.c while handling MMIO write operations through the ati_mm_write() callback. A malicious guest could use this flaw to crash the QEMU process on the host resulting in a denial of service.

...

5.5CVSS7AI score0.00415EPSS
Exploits0
NVD
NVD
added 2020/10/16 6:15 a.m.24 views

CVE-2020-24352

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw ...

5.5CVSS0.00415EPSS
Exploits0References3
OSV
OSV
added 2020/10/16 6:15 a.m.2 views

DEBIAN-CVE-2020-24352

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw ...

5.5CVSS6.7AI score0.00415EPSS
Exploits0References1
OSV
OSV
added 2020/10/16 6:15 a.m.28 views

CVE-2020-24352

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw ...

5.5CVSS6.3AI score
Exploits0References3
Prion
Prion
added 2020/10/16 6:15 a.m.18 views

Out-of-bounds

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw ...

2.1CVSS5.1AI score0.00415EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2020/10/16 6:15 a.m.29 views

CVE-2020-24352

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw ...

5.5CVSS6.4AI score0.00415EPSS
Exploits0References3
OSV
OSV
added 2020/10/16 6:15 a.m.3 views

UBUNTU-CVE-2020-24352

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw ...

5.5CVSS7.2AI score0.00415EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2020/10/16 5:5 a.m.53 views

CVE-2020-24352

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw ...

5.5CVSS5.1AI score0.00415EPSS
Exploits0
CVE
CVE
added 2020/10/16 5:5 a.m.210 views

CVE-2020-24352

The CVE-2020-24352 issue affects QEMU (up to 5.1.0) and its ATI VGA emulation. The root cause is an out-of-bounds memory access in the ati_2d_blt() routine (hw/display/ati_2d.c) during MMIO writes handled by ati_mm_write(). A malicious guest could trigger this via the ATI VGA device, crashing the...

5.5CVSS5AI score0.00415EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/10/16 5:5 a.m.25 views

CVE-2020-24352

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw ...

5AI score0.00415EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2020/10/16 5:5 a.m.49 views

CVE-2020-24352

An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw ...

5.5CVSS5.1AI score0.00415EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2020/10/13 12:0 a.m.87 views

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2020:1664-1 Rating: important References: 1174386 1174641 1174863 1175370 1175441 1176494 Cross-References: CVE-2020-14364 CVE-2020-15863 CVE-2020-16092 CVE-2020-24352 Affected Products: openSUSE Leap 15.2 An update...

5.5CVSS7.1AI score0.05447EPSS
Exploits1References6
Openbugbounty
Openbugbounty
added 2020/08/24 12:18 a.m.5 views

ati-mak.com Cross Site Scripting vulnerability OBB-1271611

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

0.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/08/20 12:0 a.m.43 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : QEMU vulnerabilities (USN-4467-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4467-1 advisory. Ziming Zhang and VictorV discovered that the QEMU SLiRP networking implementation incorrectly handled replying to certain ICMP ec...

6.8CVSS7.1AI score0.02409EPSS
Exploits0References14
Microsoft CVE
Microsoft CVE
added 2020/08/18 12:0 a.m.5 views

ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mm_index value during an ati_mm_read or ati_mm_write call.

...

6CVSS7AI score0.00486EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/08/14 9:15 a.m.26 views

CVE-2020-24352

An out-of-bounds memory access flaw was found in the ATI VGA device implementation of the QEMU emulator. This flaw occurs in the ati2dblt routine while handling MMIO write operations through the atimmwrite callback. A malicious guest could use this flaw to crash the QEMU process on the host,...

5.5CVSS3.5AI score0.00415EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/07/30 12:0 a.m.49 views

openSUSE Security Update : qemu (openSUSE-2020-1108)

This update for qemu to version 4.2.1 fixes the following issues : - CVE-2020-10761: Fixed a denial of service in Network Block Device nbd support infrastructure bsc1172710. - CVE-2020-13800: Fixed a denial of service possibility in ati-vga emulation bsc1172495. - CVE-2020-13659: Fixed a NULL...

6CVSS6.3AI score0.01796EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.35 views

SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2020:2015-1)

This update for qemu to version 4.2.1 fixes the following issues : CVE-2020-10761: Fixed a denial of service in Network Block Device nbd support infrastructure bsc1172710. CVE-2020-13800: Fixed a denial of service possibility in ati-vga emulation bsc1172495. CVE-2020-13659: Fixed a NULL pointer...

6CVSS6.3AI score0.01796EPSS
Exploits0References16
Rows per page
Query Builder