CVE-2019-10559

Accessing data buffer beyond the available data while parsing ogg clip can lead to null-pointer dereference and then memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon...

CVE-2018-17963

A potential integer overflow issue was found in the networking back-end of QEMU. It could occur while receiving packets, because it accepted packets with large size value. Such overflow could lead to OOB buffer access issue. A user inside guest could use this flaw to crash the QEMU process...

QEMU: net: ignore packets with large size

A potential integer overflow issue was found in the networking back-end of QEMU. It could occur while receiving packets, because it accepted packets with large size value. Such overflow could lead to OOB buffer access issue. A user inside guest could use this flaw to crash the QEMU process...

CVE-2018-11949

CVE-2018-11949 describes a failure to initialize an extra buffer that can lead to an out-of-bounds access in the WLAN function of Qualcomm Snapdragon components (WLAN HOST) across multiple Snapdragon family devices. The affected scope includes Snapdragon Auto, Compute, Consumer IOT, Industrial IO...

CVE-2018-11949

Failure to initialize the extra buffer can lead to an out of buffer access in WLAN function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCS605, SD 425, SD 427, SD 430, SD...

CVE-2019-5677

NVIDIA Windows GPU Display driver software for Windows all versions contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DeviceIoControl where the software reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after th...

openSUSE Security Update : qemu (openSUSE-2019-1005)

This update for qemu fixes the following issues : Security issue fixed : - CVE-2018-16847: Fixed an out of bounds r/w buffer access in cmb operations bsc1114529. Non-security issue fixed : - Fixed serial console issue that triggered a qemu-kvm bug bsc1108474. This update was imported from the...

CVE-2019-3598

CVE-2019-3598 affects McAfee Agent (MA) 5.x where a bug in how UDP requests are processed leads to a denial of service when handling specially crafted UDP packets. The vulnerability allows remote, unauthenticated attackers to potentially cause the MA service to stop responding, reducing availabil...

CVE-2019-3598 McAfee Agent update fixes a vulnerability in handling UDP requests

Buffer Access with Incorrect Length Value in McAfee Agent MA 5.x allows remote unauthenticated users to potentially cause a denial of service via specifically crafted UDP packets...

CVE-2019-3598

Buffer Access with Incorrect Length Value in McAfee Agent MA 5.x allows remote unauthenticated users to potentially cause a denial of service via specifically crafted UDP packets...

CVE-2019-3598

Buffer Access with Incorrect Length Value in McAfee Agent MA 5.x allows remote unauthenticated users to potentially cause a denial of service via specifically crafted UDP packets...

openSUSE: Security Advisory for qemu (openSUSE-SU-2018:4135-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for qemu (openSUSE-SU-2018:4135-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : qemu (openSUSE-2018-1551)

This update for qemu fixes the following issues : Security issue fixed : - CVE-2018-16847: Fixed an out of bounds r/w buffer access in cmb operations bsc1114529. Non-security issue fixed : - Fixed serial console issue that triggered a qemu-kvm bug bsc1108474. This update was imported from the...

Security update for qemu (important)

This update for qemu fixes the following issues: Security issue fixed: - CVE-2018-16847: Fixed an out of bounds r/w buffer access in cmb operations bsc1114529. Non-security issue fixed: - Fixed serial console issue that triggered a qemu-kvm bug bsc1108474. This update was imported from the...

SUSE-SU-2018:4086-1 Security update for qemu

This update for qemu fixes the following issues: Security issue fixed: - CVE-2018-16847: Fixed an out of bounds r/w buffer access in cmb operations bsc1114529. Non-security issue fixed: - Fixed serial console issue in SLES 12 SP2 that triggered a qemu-kvm bug bsc1108474...

Heap overflow

An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvmecmbops routines in nvme device. A guest user/process could use this flaw to crash the QEMU process resulting in DoS or potentially run arbitrary code with privileges of the QEMU...

CVE-2018-16847

An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvmecmbops routines in nvme device. A guest user/process could use this flaw to crash the QEMU process resulting in DoS or potentially run arbitrary code with privileges of the QEMU...

CVE-2018-16847

An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvmecmbops routines in nvme device. A guest user/process could use this flaw to crash the QEMU process resulting in DoS or potentially run arbitrary code with privileges of the QEMU...

Ubuntu: Security Advisory (USN-3631-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...