13 matches found
qemu: cirrus: insufficient blit region checks
It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM-allocated buffer boundaries in the host's QEMU process address space with attacker-provided data...
qemu security update
CentOS Errata and Security Advisory CESA-2015:0867 An updated qemu-kvm package that fixes one security issue and one bug is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS...
Scientific Linux Security Update : qemu-kvm on SL6.x i386/x86_64 (20150421)
It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM- allocated buffer boundaries in the host's QEMU process address space with attacker-provided data. CVE-2014-8106 This update also fixes the following bug : -...
qemu: cirrus: insufficient blit region checks
It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM-allocated buffer boundaries in the host's QEMU process address space with attacker-provided data...
qemu-kvm security and bug fix update
0.12.1.2-2.448.el66.2 - kvm-cirrus-fix-blit-region-check.patch bz1170571 - kvm-cirrus-don-t-overflow-CirrusVGAState-cirrusbltbuf.patch bz1170571 - Resolves: bz1170571 CVE-2014-8106 qemu-kvm: qemu: cirrus: insufficient blit region checks rhel-6.6.z 0.12.1.2-2.448.el66.1 -...
qemu: cirrus: insufficient blit region checks
It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM-allocated buffer boundaries in the host's QEMU process address space with attacker-provided data...
RedHat Update for qemu-kvm RHSA-2015:0349-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
qemu: cirrus: insufficient blit region checks
It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM-allocated buffer boundaries in the host's QEMU process address space with attacker-provided data...
qemu: cirrus: insufficient blit region checks
It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM-allocated buffer boundaries in the host's QEMU process address space with attacker-provided data...
Important: Red Hat Security Advisory: qemu-kvm-rhev security, bug fix, and enhancement update
Updated qemu-kvm-rhev packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Virtualization Hypervisor 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring Syste...
SuSE 11.3 Security Update : kvm and libvirt (SAT Patch Number 10222)
This collective update for KVM and libvirt provides fixes for security and non-security issues. kvm : - Fix NULL pointer dereference because of uninitialized UDP socket. bsc897654, CVE-2014-3640 - Fix performance degradation after migration. bsc878350 - Fix potential image corruption due to missi...
Debian DSA-3087-1 : qemu - security update
Paolo Bonzini of Red Hat discovered that the blit region checks were insufficient in the Cirrus VGA emulator in qemu, a fast processor emulator. A privileged guest user could use this flaw to write into qemu address space on the host, potentially escalating their privileges to those of the qemu...
[SECURITY] [DSA 3087-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3087-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso December 04, 2014 http://www.debian.org/security/faq -...