Lucene search
+L

14 matches found

susecve
susecve
added 2023/02/15 5:50 a.m.5 views

SUSE CVE-2011-4111

Buffer overflow in the ccidcardvscardhandlemessage function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted VSCATR message...

6.8CVSS8AI score0.02258EPSS
Exploits0References3
openvas
openvas
added 2020/01/23 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2017-1224)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.04028EPSS
Exploits0References2
nessus
nessus
added 2017/09/11 12:0 a.m.34 views

EulerOS 2.0 SP2 : qemu-kvm (EulerOS-SA-2017-1224)

According to the versions of the qemu-kvm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds memory access issue was found in Quick Emulator QEMU in the VNC display driver. This flaw could occur while refreshing the VN...

7.5CVSS6.9AI score0.04028EPSS
Exploits0References5
redhat
redhat
added 2017/08/01 4:4 p.m.3 views

Qemu: usb: integer overflow in emulated_apdu_from_guest

An integer overflow flaw was found in Quick Emulator QEMU in the CCID Card device support. The flaw could occur while passing messages via command/response packets to and from the host. A privileged user inside a guest could use this flaw to crash the QEMU process...

5.5CVSS7.4AI score0.004EPSS
Exploits0References4
redhat
redhat
added 2017/08/01 2:3 p.m.45 views

Moderate: Red Hat Security Advisory: qemu-kvm security, bug fix, and enhancement update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

6.5CVSS6.8AI score0.03036EPSS
Exploits0References23
nessus
nessus
added 2017/05/17 12:0 a.m.258 views

openSUSE Security Update : qemu (openSUSE-2017-589)

This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-2620: In CIRRUSBLTMODEMEMSYSSRC mode the bitblit copy routine cirrusbitbltcputovideo failed to check the memory region, allowing for an out-of-bounds write that allows for privilege escalation bsc1024972 -...

9.9CVSS7.5AI score0.03648EPSS
Exploits0References30
nessus
nessus
added 2017/05/12 12:0 a.m.67 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:1241-1)

This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-2620: In CIRRUSBLTMODEMEMSYSSRC mode the bitblit copy routine cirrusbitbltcputovideo failed to check the memory region, allowing for an out-of-bounds write that allows for privilege escalation bsc1024972 -...

9.9CVSS7.5AI score0.03648EPSS
Exploits0References44
prion
prion
added 2017/03/15 7:59 p.m.32 views

Integer overflow

Integer overflow in the emulatedapdufromguest function in usb/dev-smartcard-reader.c in Quick Emulator Qemu, when built with the CCID Card device emulator support, allows local users to cause a denial of service application crash via a large Application Protocol Data Units APDU unit...

2.1CVSS5.6AI score0.004EPSS
Exploits0References9Affected Software5
cve
cve
added 2017/03/15 7:0 p.m.146 views

CVE-2017-5898

CVE-2017-5898 affects Quick Emulator (QEMU) when built with CCID Card device emulator support. The vulnerability is an integer overflow in the emulated_apdu_from_guest function (usb/dev-smartcard-reader.c) that allows a local user to crash the QEMU host process by sending a large APDU unit, causi...

5.5CVSS5.7AI score0.004EPSS
Exploits0References9Affected Software1
ubuntucve
ubuntucve
added 2017/03/15 12:0 a.m.29 views

CVE-2017-5898

Integer overflow in the emulatedapdufromguest function in usb/dev-smartcard-reader.c in Quick Emulator Qemu, when built with the CCID Card device emulator support, allows local users to cause a denial of service application crash via a large Application Protocol Data Units APDU unit...

5.5CVSS6.9AI score0.004EPSS
Exploits0References3
nessus
nessus
added 2017/03/13 12:0 a.m.65 views

SUSE SLES12 Security Update : qemu (SUSE-SU-2017:0661-1)

This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-2620: In CIRRUSBLTMODEMEMSYSSRC mode the bitblit copy routine cirrusbitbltcputovideo failed to check the memory region, allowing for an out-of-bounds write that allows for privilege escalation bsc1024972 -...

9.9CVSS7.5AI score0.03648EPSS
Exploits0References36
nessus
nessus
added 2017/03/08 12:0 a.m.48 views

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:0625-1)

This update for qemu fixes several issues. These security issues were fixed : - CVE-2017-5898: The CCID Card device emulator support was vulnerable to an integer overflow flaw allowing a privileged user to crash the Qemu process on the host resulting in DoS bsc1023907. - CVE-2017-5857: The Virtio...

9.9CVSS7.5AI score0.03648EPSS
Exploits0References50
nessus
nessus
added 2017/03/01 12:0 a.m.48 views

Debian DLA-842-1 : qemu-kvm security update

Several vulnerabilities were discovered in qemu-kvm, a full virtualization solution for Linux hosts on x86 hardware with x86 guests. CVE-2017-2615 The Cirrus CLGD 54xx VGA Emulator in qemu-kvm is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in...

9.9CVSS7.5AI score0.03648EPSS
Exploits0References6
nessus
nessus
added 2014/06/13 12:0 a.m.28 views

openSUSE Security Update : kvm (openSUSE-2011-56)

Malicous clients could potentially exploit a heap based buffer overflow in the CCID card passthru device. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2011-56. The text description...

5.4AI score
Exploits0References1
Rows per page
Query Builder