K82008830: Multiple QEMU vulnerabilities

Security Advisory Description CVE-2020-25742 pcichangeirqlevel in hw/pci/pci.c in QEMU before 5.1.1 has a NULL pointer dereference because pcigetbus might not return a valid pointer. CVE-2020-25743 hw/ide/pci.c in QEMU before 5.1.1 can trigger a NULL pointer dereference because it lacks a pointer...

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2021-1632)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Denial Of Service (DoS)

qemu is vulnerable to Denial Of Service DoS. The vulnerability exists through ati2dblt in hw/display/ati2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation allows an attacker to crash the QEMU process leads to denial of service...

CVE-2020-27616

ati2dblt in hw/display/ati2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation. A guest can crash the QEMU process...

CVE-2020-27616

ati2dblt in hw/display/ati2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation. A guest can crash the QEMU process...

Design/Logic Flaw

ati2dblt in hw/display/ati2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation. A guest can crash the QEMU process...

CVE-2020-27616

ati2dblt in hw/display/ati2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation. A guest can crash the QEMU process...

CVE-2020-27616

ati2dblt in hw/display/ati2d.c in QEMU 4.2.1 can encounter an outside-limits situation in a calculation. A guest can crash the QEMU process...

CVE-2020-27616

CVE-2020-27616 : In QEMU 4.2.1, ati_2d_blt in hw/display/ati_2d.c can trigger an outside-limits calculation, allowing a guest to crash the QEMU process. Connected advisories (Astra Linux, openSUSE/SUSE) reference this exact issue and list it among other QEMU fixes, but no explicit remediation or ...

QEMU >= 4.0.0, <= 5.1.0 DoS Vulnerability

QEMU is prone to a denial of service DoS vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you c...

CVE-2020-11869

An integer overflow flaw was found in QEMU in the way it implemented the ATI VGA emulation. This flaw occurs in the ati2dblt routine while handling MMIO write operations through atimmwrite callback. A malicious guest could abuse this flaw to crash the QEMU process, resulting in a denial of servic...