Lucene search
K

109 matches found

RedHat Linux
RedHat Linux
added 2015/03/05 9:37 a.m.4 views

qemu: cirrus: insufficient blit region checks

It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM-allocated buffer boundaries in the host's QEMU process address space with attacker-provided data...

4.6CVSS7.4AI score0.00603EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/03/05 9:37 a.m.35 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security, bug fix, and enhancement update

Updated qemu-kvm-rhev packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Virtualization Hypervisor 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring Syste...

7.5CVSS7.4AI score0.04115EPSS
Exploits0References96
RedHat Linux
RedHat Linux
added 2015/03/05 7:27 a.m.5 views

qemu: cirrus: insufficient blit region checks

It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM-allocated buffer boundaries in the host's QEMU process address space with attacker-provided data...

4.6CVSS7.4AI score0.00603EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/02/24 12:0 a.m.47 views

SuSE 11.3 Security Update : kvm and libvirt (SAT Patch Number 10222)

This collective update for KVM and libvirt provides fixes for security and non-security issues. kvm : - Fix NULL pointer dereference because of uninitialized UDP socket. bsc897654, CVE-2014-3640 - Fix performance degradation after migration. bsc878350 - Fix potential image corruption due to missi...

7.5CVSS6.9AI score0.04115EPSS
Exploits0References27
OSV
OSV
added 2014/12/08 4:59 p.m.1 views

DEBIAN-CVE-2014-8106

Heap-based buffer overflow in the Cirrus VGA emulator hw/display/cirrusvga.c in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320...

4.6CVSS7.9AI score0.00603EPSS
Exploits0References1
OSV
OSV
added 2014/12/08 12:0 a.m.4 views

UBUNTU-CVE-2014-8106

Heap-based buffer overflow in the Cirrus VGA emulator hw/display/cirrusvga.c in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320...

4.6CVSS7.4AI score0.00603EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2014/12/08 12:0 a.m.26 views

CVE-2014-8106

Heap-based buffer overflow in the Cirrus VGA emulator hw/display/cirrusvga.c in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320...

4.6CVSS7.2AI score0.00603EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/12/05 12:0 a.m.33 views

Debian DSA-3087-1 : qemu - security update

Paolo Bonzini of Red Hat discovered that the blit region checks were insufficient in the Cirrus VGA emulator in qemu, a fast processor emulator. A privileged guest user could use this flaw to write into qemu address space on the host, potentially escalating their privileges to those of the qemu...

4.6CVSS7.2AI score0.00603EPSS
Exploits0References3
Debian
Debian
added 2014/12/04 1:44 p.m.43 views

[SECURITY] [DSA 3087-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3087-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso December 04, 2014 http://www.debian.org/security/faq -...

4.6CVSS8.5AI score0.00603EPSS
Exploits0
Rows per page
Query Builder