Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Oracle linux
Oracle linuxadded 2017/05/09 12:0 a.m.65 views

qemu-kvm security update

0.12.1.2-2.503.el69.3 - kvm-cirrus-avoid-write-only-variables.patch bz1444377 bz1444379 - kvm-cirrus-stop-passing-around-dst-pointers-in-the-blitt.patch bz1444377 bz1444379 - kvm-cirrus-stop-passing-around-src-pointers-in-the-blitt.patch bz1444377 bz1444379 -...

9.9CVSS1AI score0.00634EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2017/04/18 4:56 a.m.1 views

Qemu: cirrus: heap buffer overflow via vnc connection

A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support; the issue could occur when a VNC client attempted to update its display after a VGA operation is performed by a guest. A privileged user/process inside a guest could use this flaw to crash...

9.9CVSS7.8AI score0.00634EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2017/03/01 9:40 a.m.2 views

Qemu: display: cirrus: potential arbitrary code execution via cirrus_bitblt_cputovideo

Quick emulator QEMU built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrusbitbltcputovideo. A privileged user inside guest could use this flaw to crash the QEMU process OR potentially execute...

9.9CVSS7.7AI score0.0241EPSS
Exploits0References5
Oracle linux
Oracle linuxadded 2017/03/01 12:0 a.m.42 views

qemu-kvm security update

0.12.1.2-2.491.el68.7 - kvm-cirrus-fix-patterncopy-checks.patch bz1420486 bz1420488 - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch bz1420486 bz1420488 - kvm-cirrus-add-blitisunsafe-call-to-cirrusbitbltcput.patch bz1420486 bz1420488 - Resolves: bz1420486 EMBARGOED CVE-2017-2620...

9.9CVSS4.4AI score0.0241EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2017/02/27 12:0 a.m.53 views

OracleVM 3.4 : qemu-kvm (OVMSA-2017-0043)

The remote OracleVM system is missing necessary patches to address critical security updates : - kvm-cirrusvga-fix-division-by-0-for-color-expansion-rop .patch - kvm-cirrusvga-fix-off-by-one-in-blitregionisunsafe.p atch - kvm-display-cirrus-check-vga-bits-per-pixel-bpp-value.pa tch -...

9.1CVSS6.9AI score0.0101EPSS
Exploits0References3
OSV
OSVadded 2014/12/11 7:10 p.m.1 views

USN-2439-1 qemu, qemu-kvm vulnerabilities

Michael S. Tsirkin discovered that QEMU incorrectly handled certain parameters during ram load while performing a migration. An attacker able to manipulate savevm data could use this issue to possibly execute arbitrary code on the host. This issue only affected Ubuntu 12.04 LTS, Ubuntu 14.04 LTS,...

7.5CVSS7.4AI score0.02455EPSS
Exploits0References3
Rows per page
Query Builder